Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "python-setuptools-doc": "3.3-1ubuntu2+esm1", "python-setuptools-whl": "3.3-1ubuntu2+esm1", "python-pkg-resources": "3.3-1ubuntu2+esm1", "python-setuptools": "3.3-1ubuntu2+esm1", "python3-pkg-resources": "3.3-1ubuntu2+esm1", "python3-setuptools": "3.3-1ubuntu2+esm1" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "python3-setuptools": "20.7.0-1ubuntu0.1~esm1", "python-setuptools": "20.7.0-1ubuntu0.1~esm1", "python-pkg-resources": "20.7.0-1ubuntu0.1~esm1", "pypy-setuptools": "20.7.0-1ubuntu0.1~esm1", "pypy-pkg-resources": "20.7.0-1ubuntu0.1~esm1", "python3-pkg-resources": "20.7.0-1ubuntu0.1~esm1", "python-setuptools-doc": "20.7.0-1ubuntu0.1~esm1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "python3-setuptools": "39.0.1-2ubuntu0.1", "python-setuptools": "39.0.1-2ubuntu0.1", "python-pkg-resources": "39.0.1-2ubuntu0.1", "pypy-setuptools": "39.0.1-2ubuntu0.1", "pypy-pkg-resources": "39.0.1-2ubuntu0.1", "python3-pkg-resources": "39.0.1-2ubuntu0.1", "python-setuptools-doc": "39.0.1-2ubuntu0.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "pypy-setuptools": "44.1.1-1.2ubuntu0.22.04.1", "pypy-pkg-resources": "44.1.1-1.2ubuntu0.22.04.1", "python-setuptools": "44.1.1-1.2ubuntu0.22.04.1", "python2-setuptools-whl": "44.1.1-1.2ubuntu0.22.04.1", "python-pkg-resources": "44.1.1-1.2ubuntu0.22.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "python3-setuptools-whl": "59.6.0-1.2ubuntu0.22.04.1", "python3-setuptools": "59.6.0-1.2ubuntu0.22.04.1", "python-setuptools-doc": "59.6.0-1.2ubuntu0.22.04.1", "python3-pkg-resources": "59.6.0-1.2ubuntu0.22.04.1" } ] }