Описание
In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause an infinite loop thereby causing a denial of service via an unclosed parenthesis.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| python-colander | removed | package | ||
| python-colander | no-dsa | stretch | package | |
| python-colander | no-dsa | jessie | package |
Примечания
https://github.com/Pylons/colander/issues/290
https://github.com/Pylons/colander/pull/323
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 7 лет назад
In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause an infinite loop thereby causing a denial of service via an unclosed parenthesis.
CVSS3: 7.5
nvd
около 7 лет назад
In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause an infinite loop thereby causing a denial of service via an unclosed parenthesis.
