Описание
An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | embedded urllib3 not affected |
| devel | not-affected | 20.3.4-4 |
| esm-apps/bionic | not-affected | embedded urllib3 not affected |
| esm-apps/focal | released | 20.0.2-5ubuntu1.7 |
| esm-apps/jammy | not-affected | 20.3.4-4 |
| esm-apps/xenial | not-affected | embedded urllib3 not affected |
| esm-infra-legacy/trusty | not-affected | embedded urllib3 not affected |
| focal | released | 20.0.2-5ubuntu1.7 |
| groovy | ignored | end of life |
| hirsute | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | |
| devel | not-affected | 1.26.5-1~exp1 |
| esm-infra-legacy/trusty | not-affected | |
| esm-infra/bionic | not-affected | |
| esm-infra/focal | released | 1.25.8-2ubuntu0.2 |
| esm-infra/xenial | not-affected | |
| focal | released | 1.25.8-2ubuntu0.2 |
| groovy | ignored | end of life |
| hirsute | ignored | end of life |
| impish | not-affected | 1.26.5-1~exp1 |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.
An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.
An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component the authority regular expression exhibits catastrophic backtracking causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.
An issue was discovered in urllib3 before 1.26.5. When provided with a ...
EPSS
5 Medium
CVSS2
7.5 High
CVSS3