CVE-2018-1061

MEDIUM

Description

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

References

http://www.securitytracker.com/id/1042001

https://access.redhat.com/errata/RHSA-2018:3041

https://access.redhat.com/errata/RHSA-2018:3505

https://bugs.python.org/issue32981

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1061

https://docs.python.org/3.5/whatsnew/changelog.html#python-3-5-6-release-candidate-1

https://docs.python.org/3.6/whatsnew/changelog.html#python-3-6-5-release-candidate-1

https://lists.debian.org/debian-lts-announce/2018/09/msg00030.html

https://lists.debian.org/debian-lts-announce/2018/09/msg00031.html

https://usn.ubuntu.com/3817-1/

https://usn.ubuntu.com/3817-2/

https://www.debian.org/security/2018/dsa-4306

https://www.debian.org/security/2018/dsa-4307

Details

Source: MITRE

Published: 2018-06-19

Updated: 2018-11-16

Type: CWE-399

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

cpe:2.3:a:python:python:*:*:*:*:*:*:*:*

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.5.0 to 3.5.5 (inclusive)

cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from 3.6 to 3.6.4 (inclusive)

cpe:2.3:a:python:python:3.7.0:alpha1:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:alpha2:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:alpha3:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:alpha4:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:beta1:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:beta2:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:beta3:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:beta4:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:beta5:*:*:*:*:*:*

cpe:2.3:a:python:python:3.7.0:rc1:*:*:*:*:*:*

Configuration 2

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Tenable Plugins

View all (26 total)

ID	Name	Product	Family	Severity
122695	EulerOS 2.0 SP5 : python (EulerOS-SA-2019-1072)	Nessus	Huawei Local Security Checks	medium
122382	EulerOS 2.0 SP2 : python (EulerOS-SA-2019-1055)	Nessus	Huawei Local Security Checks	medium
121985	Photon OS 2.0: Python2 PHSA-2018-2.0-0086	Nessus	PhotonOS Local Security Checks	medium
121881	Photon OS 1.0: Python3 PHSA-2018-1.0-0178	Nessus	PhotonOS Local Security Checks	medium
121880	Photon OS 1.0: Python2 PHSA-2018-1.0-0178	Nessus	PhotonOS Local Security Checks	medium
119571	SUSE SLED12 / SLES12 Security Update : python, python-base (SUSE-SU-2018:3554-2)	Nessus	SuSE Local Security Checks	high
119467	Amazon Linux AMI : python27 (ALAS-2018-1108)	Nessus	Amazon Linux Local Security Checks	medium
119196	Scientific Linux Security Update : python on SL7.x x86_64	Nessus	Scientific Linux Local Security Checks	medium
118984	CentOS 7 : python (CESA-2018:3041)	Nessus	CentOS Local Security Checks	medium
118954	Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : python2.7, python3.4, python3.5 vulnerabilities (USN-3817-1)	Nessus	Ubuntu Local Security Checks	high
118869	openSUSE Security Update : python / python-base (openSUSE-2018-1363)	Nessus	SuSE Local Security Checks	high
118763	Oracle Linux 7 : python (ELSA-2018-3041)	Nessus	Oracle Linux Local Security Checks	medium
118515	RHEL 7 : python (RHSA-2018:3041)	Nessus	Red Hat Local Security Checks	medium
118501	SUSE SLED12 / SLES12 Security Update : python, python-base (SUSE-SU-2018:3554-1)	Nessus	SuSE Local Security Checks	high
117838	Debian DSA-4307-1 : python3.5 - security update	Nessus	Debian Local Security Checks	high
117812	Debian DSA-4306-1 : python2.7 - security update	Nessus	Debian Local Security Checks	high
117713	Debian DLA-1520-1 : python3.4 security update	Nessus	Debian Local Security Checks	high
117712	Debian DLA-1519-1 : python2.7 security update	Nessus	Debian Local Security Checks	high
117516	openSUSE Security Update : python3 (openSUSE-2018-1001)	Nessus	SuSE Local Security Checks	medium
117478	SUSE SLED12 / SLES12 Security Update : python3 (SUSE-SU-2018:2696-1)	Nessus	SuSE Local Security Checks	medium
112224	Photon OS 2.0: Docker / Python2 / Strongswan PHSA-2018-2.0-0086 (deprecated)	Nessus	PhotonOS Local Security Checks	medium
112221	Photon OS 1.0: Postgresql / Python2 / Python3 / Strongswan PHSA-2018-1.0-0178 (deprecated)	Nessus	PhotonOS Local Security Checks	medium
112012	SUSE SLES11 Security Update : python (SUSE-SU-2018:2408-1)	Nessus	SuSE Local Security Checks	critical
109594	FreeBSD : python 2.7 -- multiple vulnerabilities (8719b935-8bae-41ad-92ba-3c826f651219)	Nessus	FreeBSD Local Security Checks	high
109583	Slackware 14.0 / 14.1 / 14.2 / current : python (SSA:2018-124-01)	Nessus	Slackware Local Security Checks	high
109368	Amazon Linux AMI : python34 / python35,python36,python27 (ALAS-2018-1003)	Nessus	Amazon Linux Local Security Checks	medium