python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
History
28 Jul 2022, 11:31
Type | Values Removed | Values Added |
---|---|---|
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03951en_us - Third Party Advisory | |
References | (REDHAT) https://access.redhat.com/errata/RHSA-2019:3725 - Third Party Advisory | |
References | (REDHAT) https://access.redhat.com/errata/RHSA-2019:1260 - Third Party Advisory | |
References | (MISC) https://www.oracle.com/security-alerts/cpujan2020.html - Third Party Advisory |
Information
Published : 2018-06-18 14:29
Updated : 2024-02-04 19:46
NVD link : CVE-2018-1060
Mitre link : CVE-2018-1060
CVE.ORG link : CVE-2018-1060
JSON object : View
Products Affected
redhat
- enterprise_linux_server
- enterprise_linux_desktop
- ansible_tower
- enterprise_linux_workstation
canonical
- ubuntu_linux
debian
- debian_linux
fedoraproject
- fedora
python
- python
CWE