CVE-2018-1061 in Pythoninfo

Summary

python before versions 2.7.15, 3.4.9, 3.5.6 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Red Hat, Inc.

Reservation

12/04/2017

Disclosure

06/19/2018

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
119653	Python difflibIS_LINE_JUNK resource management	399	Not defined	Official fix	CVE-2018-1061

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!