CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2021-3737 — HIGH severity vulnerability | Release Alert
CVE-2021-3737
7.5
HIGHCVSS v3
Published
March 4, 2022
CVSS v2
7.1 HIGH
Affected
17 projects
Assigned by
Red Hat
Severity scale
010
Description
A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to system availability.
ChocolateyPython is a programming language that lets you work more quickly and integrate your systems more effectively. You can learn to use Python and see almost immediate gains in productivity and lower maintenance costs.
## Notes
- This package depends on the the latest major version of python package.
- This package do not support package parameters, please install the package [python315](https://chocolatey.org/packages/python315) directly when using package parameters.
- **If the package is out of date please check [Version History](#versionhistory) for the latest submitted version. If you have a question, please ask it in [Chocolatey Community Package Discussions](https://github.com/chocolatey-community/chocolatey-packages/discussions) or raise an issue on the [Chocolatey Community Packages Repository](https://github.com/chocolatey-community/chocolatey-packages/issues) if you have problems with the package. Disqus comments will generally not be responded to.**
Visual Studio MarketplacePython language support with extension access points for IntelliSense (Pylance), Debugging (Python Debugger), linting, formatting, refactoring, unit tests, and more.