Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2013-2099

Опубликовано: 09 окт. 2013
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3

Описание

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

РелизСтатусПримечание
artful

not-affected

2.6.0~bzr6574-1ubuntu1
bionic

not-affected

2.6.0~bzr6574-1ubuntu1
cosmic

not-affected

2.6.0~bzr6574-1ubuntu1
devel

not-affected

2.6.0~bzr6574-1ubuntu1
disco

not-affected

2.6.0~bzr6574-1ubuntu1
eoan

not-affected

2.6.0~bzr6574-1ubuntu1
esm-apps/focal

not-affected

2.6.0~bzr6574-1ubuntu1
esm-apps/jammy

not-affected

2.6.0~bzr6574-1ubuntu1
esm-apps/noble

not-affected

2.6.0~bzr6574-1ubuntu1
esm-infra-legacy/trusty

not-affected

2.6.0~bzr6574-1ubuntu1

Показывать по

РелизСтатусПримечание
artful

not-affected

8.6-2
bionic

not-affected

8.6-2
cosmic

not-affected

8.6-2
devel

not-affected

8.6-2
disco

not-affected

8.6-2
eoan

not-affected

8.6-2
esm-apps/bionic

not-affected

8.6-2
esm-apps/jammy

not-affected

8.6-2
esm-apps/noble

not-affected

8.6-2
esm-apps/xenial

not-affected

8.6-2

Показывать по

РелизСтатусПримечание
artful

not-affected

3.2.0-1ubuntu1
bionic

not-affected

3.2.0-1ubuntu1
cosmic

not-affected

3.2.0-1ubuntu1
devel

not-affected

3.2.0-1ubuntu1
disco

not-affected

3.2.0-1ubuntu1
eoan

not-affected

3.2.0-1ubuntu1
esm-apps/bionic

not-affected

3.2.0-1ubuntu1
esm-apps/focal

not-affected

3.2.0-1ubuntu1
esm-apps/jammy

not-affected

3.2.0-1ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.1.1-1ubuntu2]]

Показывать по

РелизСтатусПримечание
artful

not-affected

1.6-2
bionic

not-affected

1.6-2
cosmic

not-affected

1.6-2
devel

not-affected

1.6-2
disco

not-affected

1.6-2
eoan

not-affected

1.6-2
esm-infra-legacy/trusty

not-affected

1.6-2
esm-infra/bionic

not-affected

1.6-2
esm-infra/focal

not-affected

1.6-2
esm-infra/xenial

not-affected

1.6-2

Показывать по

РелизСтатусПримечание
artful

not-affected

2.7.5-5ubuntu1
bionic

not-affected

2.7.5-5ubuntu1
cosmic

not-affected

2.7.5-5ubuntu1
devel

DNE

disco

not-affected

2.7.5-5ubuntu1
eoan

not-affected

2.7.5-5ubuntu1
esm-apps/focal

not-affected

2.7.5-5ubuntu1
esm-apps/jammy

not-affected

2.7.5-5ubuntu1
esm-infra-legacy/trusty

not-affected

2.7.5-5ubuntu1
esm-infra/bionic

not-affected

2.7.5-5ubuntu1

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-apps/xenial

needed

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

Показывать по

РелизСтатусПримечание
artful

not-affected

2.3.3-1
bionic

not-affected

2.3.3-1
cosmic

not-affected

2.3.3-1
devel

not-affected

2.18-2.1build2
disco

not-affected

2.3.3-1
eoan

not-affected

2.3.3-1
esm-apps/bionic

not-affected

2.3.3-1
esm-apps/focal

not-affected

2.3.3-1
esm-apps/jammy

not-affected

2.3.3-1
esm-apps/noble

not-affected

2.3.3-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 88%
0.04072
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2013-2099

redhat
больше 12 лет назад

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

nvd логотип

CVE-2013-2099

nvd
около 12 лет назад

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

debian логотип

CVE-2013-2099

debian
около 12 лет назад

Algorithmic complexity vulnerability in the ssl.match_hostname functio ...

github логотип

GHSA-cqcg-qrcv-vr6v

github
больше 3 лет назад

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

EPSS

Процентиль: 88%
0.04072
Низкий

4.3 Medium

CVSS2

Уязвимость CVE-2013-2099