CVE-2021-29063 log

Source
Severity Low
Remote Yes
Type Denial of service
Description
A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath version 1.2.1 when the mpmathify function is called.
Group Package Affected Fixed Severity Status Ticket
AVG-2089 python-mpmath 1.2.1-2 Low Vulnerable
References
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md
https://github.com/fredrik-johansson/mpmath/issues/548
https://github.com/fredrik-johansson/mpmath/pull/570
https://github.com/fredrik-johansson/mpmath/commit/c811b37c65a4372a7ce613111d2a508c204f9833