ID de Prueba:	1.3.6.1.4.1.25623.1.0.113562
Categoría:	Denial of Service
Título:	Python 2.x <= 2.7.11, 3.x <= 3.6.6 Denial of Service (DoS) Vulnerability - Linux
Resumen:	Python is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Python is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability. Vulnerability Impact: Successful exploitation would allow an attacker to crash the application. Affected Software/OS: Python versions 2.0.0 through 2.7.11 and 3.0.0 through 3.6.6. Solution: Update to version 2.7.12 or 3.6.7 respectively. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-5010 https://security.gentoo.org/glsa/202003-26 https://talosintelligence.com/vulnerability_reports/TALOS-2019-0758 https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html RedHat Security Advisories: RHSA-2019:3520 https://access.redhat.com/errata/RHSA-2019:3520 RedHat Security Advisories: RHSA-2019:3725 https://access.redhat.com/errata/RHSA-2019:3725 SuSE Security Announcement: openSUSE-SU-2020:0086 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
Copyright	Copyright (C) 2019 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.