CVE-2013-4238

2013-08-1700:00:00

ubuntu.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

56.8%

JSON

The ssl.match_hostname function in the SSL module in Python 2.6 through 3.4
does not properly handle a ‘\0’ character in a domain name in the Subject
Alternative Name field of an X.509 certificate, which allows
man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted
certificate issued by a legitimate Certification Authority, a related issue
to CVE-2009-2408.

Bugs

<http://bugs.python.org/issue18709>
<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719566 (python2.7)>
<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719567 (python3.3)>
<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719568 (python3.2)>

Notes

Author	Note
jdstrand	reproducer in upstream report

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchpython2.6< 2.6.5-1ubuntu6.2UNKNOWN
ubuntu12.04noarchpython2.7< 2.7.3-0ubuntu3.4UNKNOWN
ubuntu12.10noarchpython2.7< 2.7.3-5ubuntu4.3UNKNOWN
ubuntu13.04noarchpython2.7< 2.7.4-2ubuntu3.2UNKNOWN
ubuntu12.04noarchpython3.2< 3.2.3-0ubuntu3.5UNKNOWN
ubuntu12.10noarchpython3.2< 3.2.3-6ubuntu3.4UNKNOWN
ubuntu12.10noarchpython3.3< 3.3.0-1ubuntu0.1UNKNOWN
ubuntu13.04noarchpython3.3< 3.3.1-1ubuntu5.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	python2.6	< 2.6.5-1ubuntu6.2	UNKNOWN
ubuntu	12.04	noarch	python2.7	< 2.7.3-0ubuntu3.4	UNKNOWN
ubuntu	12.10	noarch	python2.7	< 2.7.3-5ubuntu4.3	UNKNOWN
ubuntu	13.04	noarch	python2.7	< 2.7.4-2ubuntu3.2	UNKNOWN
ubuntu	12.04	noarch	python3.2	< 3.2.3-0ubuntu3.5	UNKNOWN
ubuntu	12.10	noarch	python3.2	< 3.2.3-6ubuntu3.4	UNKNOWN
ubuntu	12.10	noarch	python3.3	< 3.3.0-1ubuntu0.1	UNKNOWN
ubuntu	13.04	noarch	python3.3	< 3.3.1-1ubuntu5.2	UNKNOWN