CVE-2018-1060
Description
python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3libs apop() method. An attacker could use this flaw to cause denial of service.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.961
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| An interactive high-level object-oriented language (USN-3134-1) python2.7_2.7.6-8ubuntu0.5_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3134-1) python2.7_2.7.6-8ubuntu0.5_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3134-1) python2.7-minimal_2.7.6-8ubuntu0.5_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3134-1) python2.7-minimal_2.7.6-8ubuntu0.5_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7_2.7.6-8ubuntu0.5_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7_2.7.6-8ubuntu0.5_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7_2.7.15~rc1-1ubuntu0.1_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7_2.7.15~rc1-1ubuntu0.1_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7_2.7.12-1ubuntu0~16.04.4_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7_2.7.12-1ubuntu0~16.04.4_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.4_3.4.3-1ubuntu1~14.04.7_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.4_3.4.3-1ubuntu1~14.04.7_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.5_3.5.2-2ubuntu0~16.04.5_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.5_3.5.2-2ubuntu0~16.04.5_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7-minimal_2.7.6-8ubuntu0.5_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7-minimal_2.7.6-8ubuntu0.5_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7-minimal_2.7.15~rc1-1ubuntu0.1_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7-minimal_2.7.15~rc1-1ubuntu0.1_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7-minimal_2.7.12-1ubuntu0~16.04.4_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python2.7-minimal_2.7.12-1ubuntu0~16.04.4_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.4-minimal_3.4.3-1ubuntu1~14.04.7_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.4-minimal_3.4.3-1ubuntu1~14.04.7_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.5-minimal_3.5.2-2ubuntu0~16.04.5_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-3817-1) python3.5-minimal_3.5.2-2ubuntu0~16.04.5_amd64.deb | Linux |
| python2.7 security update(DSA-4306-1) python2.7_2.7.13-2+deb9u3_i386.deb | Linux |
| python2.7 security update(DSA-4306-1) python2.7_2.7.13-2+deb9u3_amd64.deb | Linux |
| python3.5 security update(DSA-4307-1) python3.5_3.5.3-1+deb9u1_i386.deb | Linux |
| python3.5 security update(DSA-4307-1) python3.5_3.5.3-1+deb9u1_amd64.deb | Linux |
| Python security update (CESA-2018:2123) python-2.7.5-76.el7.x86_64.rpm | Linux |
| Python security update (CESA-2018:2123) tkinter-2.7.5-76.el7.x86_64.rpm | Linux |
| Python security update (CESA-2018:2123) python-libs-2.7.5-76.el7.x86_64.rpm | Linux |
| Python security update (CESA-2018:2123) python-libs-2.7.5-76.el7.i686.rpm | Linux |
| Python security update (CESA-2018:2123) python-test-2.7.5-76.el7.x86_64.rpm | Linux |
| Python security update (CESA-2018:2123) python-debug-2.7.5-76.el7.x86_64.rpm | Linux |
| Python security update (CESA-2018:2123) python-devel-2.7.5-76.el7.x86_64.rpm | Linux |
| Python security update (CESA-2018:2123) python-tools-2.7.5-76.el7.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) libpython2_6-1_0-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) libpython2_6-1_0-32bit-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-32bit-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-base-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-base-32bit-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-curses-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-demo-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-doc-2.6-8.40.15.1.noarch.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-doc-pdf-2.6-8.40.15.1.noarch.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-gdbm-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-idle-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-tk-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2408-1(SUSE Linux Enterprise Server 11-SP4 ) python-xml-2.6.9-40.15.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) libpython3_4m1_0-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) libpython3_4m1_0-debuginfo-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-base-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-base-debuginfo-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-base-debugsource-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-curses-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-curses-debuginfo-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-debuginfo-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:2696-1(SUSE Linux Enterprise Desktop 12-SP3 ) python3-debugsource-3.4.6-25.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) libpython2_7-1_0-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) libpython2_7-1_0-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) libpython2_7-1_0-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) libpython2_7-1_0-debuginfo-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-base-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-base-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-base-debuginfo-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-base-debugsource-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-curses-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-curses-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-debugsource-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-devel-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-tk-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-tk-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-xml-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-xml-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-base-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-debuginfo-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-demo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-doc-2.7.13-28.16.1.noarch.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-doc-pdf-2.7.13-28.16.1.noarch.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-gdbm-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-gdbm-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-1(SUSE Linux Enterprise Server 12-SP3 ) python-idle-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) libpython2_7-1_0-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) libpython2_7-1_0-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) libpython2_7-1_0-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) libpython2_7-1_0-debuginfo-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-base-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-base-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-base-debuginfo-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-base-debugsource-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-curses-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-curses-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-debugsource-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-devel-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-tk-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-tk-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-xml-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Desktop 12-SP4 ) python-xml-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-base-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-debuginfo-32bit-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-demo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-doc-2.7.13-28.16.1.noarch.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-doc-pdf-2.7.13-28.16.1.noarch.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-gdbm-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-gdbm-debuginfo-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3554-2(SUSE Linux Enterprise Server 12-SP4 ) python-idle-2.7.13-28.16.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) libpython3_6m1_0-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) libpython3_6m1_0-debuginfo-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) python36-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) python36-base-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) python36-base-debuginfo-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) python36-base-debugsource-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) python36-debuginfo-3.6.10-4.3.5.x86_64.rpm | Linux |
| SUSE-SU-2020:0302-1(SUSE Linux Enterprise Server 12-SP5 ) python36-debugsource-3.6.10-4.3.5.x86_64.rpm | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.10_3.10.12-1~22.04.4_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.10_3.10.12-1~22.04.4_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.10-minimal_3.10.12-1~22.04.4_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.10-minimal_3.10.12-1~22.04.4_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.11_3.11.6-3ubuntu0.1_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.11_3.11.6-3ubuntu0.1_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.11-minimal_3.11.6-3ubuntu0.1_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.11-minimal_3.11.6-3ubuntu0.1_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.12_3.12.0-1ubuntu0.1_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.12_3.12.0-1ubuntu0.1_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.12-minimal_3.12.0-1ubuntu0.1_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.12-minimal_3.12.0-1ubuntu0.1_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.8_3.8.10-0ubuntu1~20.04.10_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.8_3.8.10-0ubuntu1~20.04.10_i386.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.8-minimal_3.8.10-0ubuntu1~20.04.10_amd64.deb | Linux |
| An interactive high-level object-oriented language (USN-6891-1) python3.8-minimal_3.8.10-0ubuntu1~20.04.10_i386.deb | Linux |
| CVE-2018-1060 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234