Blarsen

**Name of the Vulnerable Software and Affected Versions** typed ast versions 1.3.0 through 1.3.1 **Description** The issue is related to an out-of-bounds read in the `handle keywordonly args` function. An attacker who can cause a Python interpreter to parse Python source, but not necessarily execute it, may be able to crash the interpreter process. This could be a concern in services that parse Python code without executing it, such as web-based services. **Recommendations** For typed ast versions 1.3.0 through 1.3.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** typed ast versions 1.3.0 through 1.3.1 **Description** The issue is related to an out-of-bounds read in the `ast for arguments` function. An attacker who can cause a Python interpreter to parse Python source code, but not necessarily execute it, may be able to crash the interpreter process. This could be a concern in services that parse Python code without executing it, such as web-based services. **Recommendations** For typed ast versions 1.3.0 and 1.3.1, consider updating to a version that fixes the out-of-bounds read issue in the `ast for arguments` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.