CVE-2026-11972

ADVISORY - docker

Summary

When using the "tarfile" module with a file opened in "streaming mode" (mode="r|") the tarfile module did not properly handle EOF, making archive parsing take exponentially longer.

EPSS Score⁠: 0.00318 (0.236)

Common Weakness Enumeration (CWE)

Impacted images

Advisories

Docker

CREATED

6 days ago

UPDATED

5 days ago

ADVISORY ID

CVE-2026-11972

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

4 days ago

UPDATED

4 days ago

ADVISORY IDCVE-2026-11972⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Bitnami

CREATED

6 hours ago

UPDATED

6 hours ago

ADVISORY ID

BIT-libpython-2026-11972

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

8.2high

Bitnami

CREATED

6 hours ago

UPDATED

6 hours ago

ADVISORY ID

BIT-python-2026-11972

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

8.2high

Bitnami

CREATED

6 hours ago

UPDATED

6 hours ago

ADVISORY ID

BIT-python-min-2026-11972

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

8.2high