VDB

GHSA-2mrj-435v-c2cr

GHSA-2mrj-435v-c2cr PUBLISHED CVSS 3.700000047683716 LOW

An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature decoding, malformed DER signatures could raise unexpected exceptions (or no exceptions at all), which could lead to a denial of service.

Risk Scores

CVSS v3.0
3.700000047683716
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products

VendorProductVersions
csaf_redhattfm-rubygem-prometheus-client-0:1.0.0-3.el7sat.noarch
csaf_redhatpython3-aiohttp-xmlrpc-0:1.3.1-1.el7pc.noarch
csaf_redhatqpid-cpp-debuginfo-0:1.36.0-32.el7_9amq.x86_64
csaf_redhattfm-rubygem-pg-debuginfo-0:1.1.4-4.el7sat.x86_64
csaf_redhattfm-rubygem-hammer_cli_foreman_bootdisk-0:0.3.0-2.el7sat.noarch
csaf_redhattfm-rubygem-activerecord-0:6.0.3.7-1.el7sat.noarch
csaf_redhattfm-rubygem-sinatra-0:2.1.0-2.el7sat.src
csaf_redhattfm-rubygem-hammer_cli_foreman_openscap-0:0.1.12-2.el7sat.noarch
csaf_redhattfm-rubygem-redfish_client-0:0.5.2-2.el7sat.src
csaf_redhatlibmodulemd2-0:2.9.3-1.el7pc.src
csaf_redhattfm-rubygem-foreman_templates-0:9.1.0-1.el7sat.noarch
csaf_redhatpython-toml-0:0.10.2-1.el7pc.src
csaf_opensusepython310-ecdsa-0.19.0-1.1.ppc64le
csaf_redhatpython-dateutil-0:2.8.1-3.el7pc.src
csaf_redhattfm-rubygem-actionmailer-0:6.0.3.7-1.el7sat.noarch
csaf_redhattfm-rubygem-ruby-libvirt-0:0.7.1-2.el7sat.x86_64
csaf_suseSUSE Linux Enterprise Module for Basesystem 15 SP2
csaf_redhatkeycloak-httpd-client-install-0:1.2.2-2.el7sat.src
csaf_redhattfm-rubygem-rack-0:2.2.3-2.el7sat.src
csaf_redhatgofer-0:2.12.5-7.el7sat.src

…and 1003 more

Timeline

  • CVE Published
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Distribution Patch
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
  • Mar 2, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›