Various memory and file descriptor leaks were found in apt-python files python/arfile.cc, python/tag.cc, python/tarfile.cc, aka GHSL-2020-170. This issue affects: python-apt 1.1.0~beta1 versions prior to 1.1.0~beta1ubuntu0.16.04.10; 1.6.5ubuntu0 versions prior to 1.6.5ubuntu0.4; 2.0.0ubuntu0 versions prior to 2.0.0ubuntu0.20.04.2; 2.1.3ubuntu1 versions prior to 2.1.3ubuntu1.1;
2020-12-10T04:15:11.547
2024-11-21T05:21:03.007
Modified
CVSSv3.1: 2.0 (LOW)
AV:L/AC:L/Au:N/C:N/I:N/A:P
3.9
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | debian | advanced_package_tool | < 1.1.0\~beta1ubuntu0.16.04.10 | Yes |
| Operating System | canonical | ubuntu_linux | 16.04 | No |
| Application | debian | advanced_package_tool | < 1.6.5ubuntu0.4 | Yes |
| Operating System | canonical | ubuntu_linux | 18.04 | No |
| Application | debian | advanced_package_tool | < 2.0.0ubuntu0.20.04.2 | Yes |
| Operating System | canonical | ubuntu_linux | 20.04 | No |
| Application | debian | advanced_package_tool | < 2.1.30ubuntu1.1 | Yes |
| Operating System | canonical | ubuntu_linux | 20.10 | No |
| Application | debian | advanced_package_tool | < 1.8.4.2 | Yes |
| Operating System | debian | debian_linux | 10.0 | No |