Описание
ELSA-2024-3846: python-idna security update (MODERATE)
[2.10-7.0.1.1]
- Rebuild with release bump
[2.10-7.1]
- Security fix for CVE-2024-3651 Resolves: RHEL-33464
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
python3-idna
2.10-7.0.1.el9_4.1
Oracle Linux x86_64
python3-idna
2.10-7.0.1.el9_4.1
Связанные CVE
Связанные уязвимости
A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulnerability is triggered by a crafted input that causes the `idna.encode()` function to process the input with considerable computational load, significantly increasing the processing time in a quadratic manner relative to the input size.
A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulnerability is triggered by a crafted input that causes the `idna.encode()` function to process the input with considerable computational load, significantly increasing the processing time in a quadratic manner relative to the input size.
A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulnerability is triggered by a crafted input that causes the `idna.encode()` function to process the input with considerable computational load, significantly increasing the processing time in a quadratic manner relative to the input size.
A vulnerability was identified in the kjd/idna library, specifically w ...