Red Hat: CVE-2024-3651: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode() (Multiple Advisories)

Red Hat: CVE-2024-3651: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode() (Multiple Advisories)

Severity

7

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:C)

Published

04/12/2024

Created

05/31/2024

Added

05/30/2024

Modified

09/03/2024

Description

A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulnerability is triggered by a crafted input that causes the `idna.encode()` function to process the input with considerable computational load, significantly increasing the processing time in a quadratic manner relative to the input size.

Solution(s)

• redhat-upgrade-cython-debugsource
• redhat-upgrade-numpy-debugsource
• redhat-upgrade-python-cffi-debugsource
• redhat-upgrade-python-cryptography-debugsource
• redhat-upgrade-python-lxml-debugsource
• redhat-upgrade-python-psutil-debugsource
• redhat-upgrade-python-psycopg2-debugsource
• redhat-upgrade-python3-idna
• redhat-upgrade-python39
• redhat-upgrade-python39-attrs
• redhat-upgrade-python39-cffi
• redhat-upgrade-python39-cffi-debuginfo
• redhat-upgrade-python39-chardet
• redhat-upgrade-python39-cryptography
• redhat-upgrade-python39-cryptography-debuginfo
• redhat-upgrade-python39-cython
• redhat-upgrade-python39-cython-debuginfo
• redhat-upgrade-python39-debug
• redhat-upgrade-python39-debuginfo
• redhat-upgrade-python39-debugsource
• redhat-upgrade-python39-devel
• redhat-upgrade-python39-idle
• redhat-upgrade-python39-idna
• redhat-upgrade-python39-iniconfig
• redhat-upgrade-python39-libs
• redhat-upgrade-python39-lxml
• redhat-upgrade-python39-lxml-debuginfo
• redhat-upgrade-python39-mod_wsgi
• redhat-upgrade-python39-more-itertools
• redhat-upgrade-python39-numpy
• redhat-upgrade-python39-numpy-debuginfo
• redhat-upgrade-python39-numpy-doc
• redhat-upgrade-python39-numpy-f2py
• redhat-upgrade-python39-packaging
• redhat-upgrade-python39-pip
• redhat-upgrade-python39-pip-wheel
• redhat-upgrade-python39-pluggy
• redhat-upgrade-python39-ply
• redhat-upgrade-python39-psutil
• redhat-upgrade-python39-psutil-debuginfo
• redhat-upgrade-python39-psycopg2
• redhat-upgrade-python39-psycopg2-debuginfo
• redhat-upgrade-python39-psycopg2-doc
• redhat-upgrade-python39-psycopg2-tests
• redhat-upgrade-python39-py
• redhat-upgrade-python39-pybind11
• redhat-upgrade-python39-pybind11-devel
• redhat-upgrade-python39-pycparser
• redhat-upgrade-python39-pymysql
• redhat-upgrade-python39-pyparsing
• redhat-upgrade-python39-pysocks
• redhat-upgrade-python39-pytest
• redhat-upgrade-python39-pyyaml
• redhat-upgrade-python39-pyyaml-debuginfo
• redhat-upgrade-python39-requests
• redhat-upgrade-python39-rpm-macros
• redhat-upgrade-python39-scipy
• redhat-upgrade-python39-scipy-debuginfo
• redhat-upgrade-python39-setuptools
• redhat-upgrade-python39-setuptools-wheel
• redhat-upgrade-python39-six
• redhat-upgrade-python39-test
• redhat-upgrade-python39-tkinter
• redhat-upgrade-python39-toml
• redhat-upgrade-python39-urllib3
• redhat-upgrade-python39-wcwidth
• redhat-upgrade-python39-wheel
• redhat-upgrade-python39-wheel-wheel
• redhat-upgrade-pyyaml-debugsource
• redhat-upgrade-scipy-debugsource

References

• CVE-2024-3651
• RHSA-2024:3466
• RHSA-2024:3543
• RHSA-2024:3846
• RHSA-2024:4260