Description
Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.
Published: 2013-10-09
Score: 4.3 Medium
EPSS: 5.2% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-1107-1 bzr security update
EUVD EUVD EUVD-2013-2072 Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.
Ubuntu USN Ubuntu USN USN-1983-1 Python 2.7 vulnerabilities
Ubuntu USN Ubuntu USN USN-1984-1 Python 3.2 vulnerabilities
Ubuntu USN Ubuntu USN USN-1985-1 Python 3.3 vulnerabilities
History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.04478}

 epss

{'score': 0.01957}

Subscriptions

Canonical Ubuntu Linux
Python Python
Redhat Openstack Rhel Common Rhel Software Collections Satellite Satellite Capsule Storage
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-06T15:27:40.693Z

Reserved: 2013-02-19T00:00:00.000Z

Link: CVE-2013-2099

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2013-10-09T14:53:20.230

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-2099

cve-icon Redhat

Severity : Low

Publid Date: 2013-05-15T00:00:00Z

Links: CVE-2013-2099 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses