Описание
The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | not-affected | contains the RFC 6125 code change |
| precise | not-affected | doesn't implement ssl.match_hostname |
| trusty | not-affected | contains the RFC 6125 code change |
| trusty/esm | not-affected | contains the RFC 6125 code change |
| upstream | needs-triage | |
| utopic | not-affected | |
| vivid | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| utopic | DNE | |
| vivid | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | not-affected | contains the RFC 6125 code change |
| precise | DNE | |
| trusty | not-affected | contains the RFC 6125 code change |
| trusty/esm | not-affected | contains the RFC 6125 code change |
| upstream | needs-triage | |
| utopic | not-affected | |
| vivid | not-affected |
Показывать по
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3
Связанные уязвимости
The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.
The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.
The ssl.match_hostname function in CPython (aka Python) before 2.7.9 a ...
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3