GHSA-7p79-6x2v-5h88
Suggest an improvement- Source
- https://github.com/advisories/GHSA-7p79-6x2v-5h88
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/02/GHSA-7p79-6x2v-5h88/GHSA-7p79-6x2v-5h88.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-7p79-6x2v-5h88
- Published
- 2022-02-16T22:57:57Z
- Modified
- 2024-12-05T05:30:48.003313Z
- Summary
- Server crash if running Python 3.10 w/ Sanic 20.12
- Details
-
!!! ONLY APPLIES TO VERSIONS PRIOR TO Sanic v20.12 WHEN USING Python 3.10 !!!
Sanic v20.12 officially supports Python versions 3.6, 3.7, 3.8, and 3.9. However, if you accidentally run it with version 3.10 (which is not supported by Sanic 20.12), your server is prone to crashing on an incoming web request.
Impact
Anyone running Sanic server between 0.1.7 and 20.12 using Python 3.10.
Patches
Workarounds
Use a supported version of Python (v3.6 - v3.9)
References
In asyncio, the explicit passing of a loop argument has been deprecated and will be removed in version 3.10 for the following: ... asyncio.Event
For more information
If you have any questions or comments about this advisory: * Open an issue in the community forums * Ping us on the Discord server
- Database specific
{ "github_reviewed": true, "severity": "HIGH", "nvd_published_at": null, "cwe_ids": [], "github_reviewed_at": "2022-02-16T22:57:57Z" }- References
Affected packages
PyPI / sanic
Package
- Name
- sanic
- View open source insights on deps.dev
- Purl
- pkg:pypi/sanic
Affected versions
0.*
0.1.7
0.1.8
0.1.9
0.2.0
0.3.0
0.3.1
0.4.0
0.4.1
0.5.0
0.5.1
0.5.2
0.5.4
0.6.0
0.7.0
0.8.0
0.8.1
0.8.2
0.8.3
18.*
18.12.0
19.*
19.3.1
19.6.0
19.6.2
19.6.3
19.9.0
19.12.0
19.12.2
19.12.3
19.12.4
19.12.5
20.*
20.3.0
20.6.0
20.6.1
20.6.2
20.6.3
20.9.0
20.9.1
20.12.0
20.12.1
20.12.2
20.12.3
20.12.4
20.12.5