CVE-2021-40839

Loop with Unreachable Exit Condition (Infinite Loop) in pypi/rencode

Identifiers

CVE-2021-40839

Package Slug

pypi/rencode

Vulnerability

Loop with Unreachable Exit Condition (Infinite Loop)

Description

The rencode package for Python allows an infinite loop in typecode decoding (such as via ;\x2f\x7f), enabling a remote attack that consumes CPU and memory.

Affected Versions

All versions up to 1.0.6

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-09-24

source