CVE-2021-29063 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	Yes
Type	Denial of service
Description	A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath version 1.2.1 when the mpmathify function is called.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2089	python-mpmath	1.2.1-5		Low	Vulnerable

References
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md https://github.com/fredrik-johansson/mpmath/issues/548 https://github.com/fredrik-johansson/mpmath/pull/570 https://github.com/fredrik-johansson/mpmath/commit/c811b37c65a4372a7ce613111d2a508c204f9833

References

https://github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md
https://github.com/fredrik-johansson/mpmath/issues/548
https://github.com/fredrik-johansson/mpmath/pull/570
https://github.com/fredrik-johansson/mpmath/commit/c811b37c65a4372a7ce613111d2a508c204f9833