Rocky Linux: CVE-2024-3651: python-idna (Multiple Advisories)

Rocky Linux: CVE-2024-3651: python-idna (Multiple Advisories)

Severity

8

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

07/07/2024

Created

06/17/2024

Added

08/28/2024

Modified

01/30/2025

Description

A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulnerability is triggered by a crafted input that causes the `idna.encode()` function to process the input with considerable computational load, significantly increasing the processing time in a quadratic manner relative to the input size.

Solution(s)

• rocky-upgrade-cython-debugsource
• rocky-upgrade-numpy-debugsource
• rocky-upgrade-python-cffi-debugsource
• rocky-upgrade-python-cryptography-debugsource
• rocky-upgrade-python-lxml-debugsource
• rocky-upgrade-python-psutil-debugsource
• rocky-upgrade-python-psycopg2-debugsource
• rocky-upgrade-python39
• rocky-upgrade-python39-cffi
• rocky-upgrade-python39-cffi-debuginfo
• rocky-upgrade-python39-cryptography
• rocky-upgrade-python39-cryptography-debuginfo
• rocky-upgrade-python39-cython
• rocky-upgrade-python39-cython-debuginfo
• rocky-upgrade-python39-debug
• rocky-upgrade-python39-debuginfo
• rocky-upgrade-python39-debugsource
• rocky-upgrade-python39-devel
• rocky-upgrade-python39-idle
• rocky-upgrade-python39-libs
• rocky-upgrade-python39-lxml
• rocky-upgrade-python39-lxml-debuginfo
• rocky-upgrade-python39-mod_wsgi
• rocky-upgrade-python39-numpy
• rocky-upgrade-python39-numpy-debuginfo
• rocky-upgrade-python39-numpy-f2py
• rocky-upgrade-python39-psutil
• rocky-upgrade-python39-psutil-debuginfo
• rocky-upgrade-python39-psycopg2
• rocky-upgrade-python39-psycopg2-debuginfo
• rocky-upgrade-python39-psycopg2-doc
• rocky-upgrade-python39-psycopg2-tests
• rocky-upgrade-python39-pybind11
• rocky-upgrade-python39-pybind11-devel
• rocky-upgrade-python39-pyyaml
• rocky-upgrade-python39-pyyaml-debuginfo
• rocky-upgrade-python39-scipy
• rocky-upgrade-python39-scipy-debuginfo
• rocky-upgrade-python39-test
• rocky-upgrade-python39-tkinter
• rocky-upgrade-pyyaml-debugsource
• rocky-upgrade-scipy-debugsource

References

• https://attackerkb.com/topics/cve-2024-3651
• CVE - 2024-3651
• https://errata.rockylinux.org/RLSA-2024:3466
• https://errata.rockylinux.org/RLSA-2024:3846