Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-1061

Опубликовано: 19 июн. 2018
Источник: ubuntu
Приоритет: low
CVSS2: 5
CVSS3: 6.5

Описание

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

2.7.15~rc1-1
cosmic

not-affected

2.7.15-4ubuntu1
devel

DNE

disco

not-affected

2.7.15-4ubuntu1
eoan

not-affected

2.7.15-4ubuntu1
esm-apps/focal

not-affected

2.7.15-4ubuntu1
esm-apps/jammy

not-affected

2.7.15-4ubuntu1
esm-infra-legacy/trusty

not-affected

2.7.6-8ubuntu0.5
esm-infra/bionic

not-affected

2.7.15~rc1-1

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

3.4.3-1ubuntu1~14.04.7
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

3.5.2-2ubuntu0~16.04.4~14.04.1+esm1
esm-infra/focal

DNE

esm-infra/xenial

not-affected

3.5.2-2ubuntu0~16.04.5
focal

DNE

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

3.6.6-1~18.04
cosmic

not-affected

3.6.6-4
devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

3.6.6-1~18.04
esm-infra/focal

DNE

focal

DNE

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

3.7.0~b3-1
cosmic

not-affected

3.7.0-1
devel

DNE

disco

not-affected

3.7.0-1
eoan

not-affected

3.7.0-1
esm-apps/bionic

not-affected

3.7.0~b3-1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

Показывать по

5 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVSS3: 6.5
redhat
больше 7 лет назад

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

CVSS3: 6.5
nvd
около 7 лет назад

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

CVSS3: 6.5
debian
около 7 лет назад

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is ...

CVSS3: 7.5
github
около 3 лет назад

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

CVSS3: 7.5
fstec
около 7 лет назад

Уязвимость метода difflib.IS_LINE_JUNK интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании

5 Medium

CVSS2

6.5 Medium

CVSS3