15 matches found
Linux Distros Unpatched Vulnerability : CVE-2013-7440
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow...
K77241314: Python vulnerability CVE-2013-7440
Security Advisory Description The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate. CVE-2013-7440 Impact There is no impact; ...
SUSE: Security Advisory (SUSE-SU-2015:1298-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : bzr (EulerOS-SA-2020-1648)
According to the version of the bzr package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might all...
Huawei EulerOS: Security Advisory for bzr (EulerOS-SA-2020-1648)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2013-7440
The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate...
CVE-2013-7440
The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate...
CVE-2013-7440
CVE-2013-7440 affects CPython’s ssl.match_hostname: Python before 2.7.9 and 3.x before 3.3.3 incorrectly handles wildcards in hostnames, allowing MITM via a crafted certificate. Affected: CPython’s standard library SSL hostname verification. Root cause: wildcard handling flaw in hostname matching...
Fedora 22 : python-pymongo-2.5.2-8.fc22 (2016-52b294538d)
Security fix for CVE-2013-2099, CVE-2013-7440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 23 : python-pymongo-2.5.2-8.fc23 (2016-50abc3e885)
Security fix for CVE-2013-2099, CVE-2013-7440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
SUSE SLED11 Security Update : Recommended update for python-setuptools (SUSE-SU-2015:1651-1)
python-setuptools was updated to fix one security issue. The following vulnerability was fixed : - CVE-2013-7440: Non-RFC6125-compliant host name matching was incorrect bsc930189 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
Fedora 21 : bzr-2.6.0-7.fc21 (2015-11995)
Security fix for CVE-2013-7440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 22 : bzr-2.6.0-8.fc22 (2015-12001)
Security fix for CVE-2013-7440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora Update for bzr FEDORA-2015-11995
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2015:1298-1 Security update for python-setuptools
the following issue was fixed by this update: Non-RFC6125-compliant host name matching was incorrect CVE-2013-7440 bnc930189...