Name of the Vulnerable Software and Affected Versions typed ast versions 1.3.0 through 1.3.1

Description The issue is related to an out-of-bounds read in the handle keywordonly args function. An attacker who can cause a Python interpreter to parse Python source, but not necessarily execute it, may be able to crash the interpreter process. This could be a concern in services that parse Python code without executing it.

Recommendations For typed ast versions 1.3.0 through 1.3.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.