Security Advisory

CVE-2013-2099

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-10-09 14:44:00

Last updated 2024-08-06 15:27:40

Assigner redhat

State PUBLISHED

Description

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

← Browse all CVEs View on cve.org ↗