CVE-2020-6817

🗓️ 16 Feb 2023 22:15:00Reported by ubuntu.comType

ubuntucve

ubuntucve🔗 ubuntu.com👁 20 Views

Behavior parsing vulnerability leading to denial of servic

Reporter	Title	Published	Views	Family All 49
FreeBSD	py-bleach -- regular expression denial-of-service	9 Mar 201900:00	–	freebsd
Circl	CVE-2020-6817	11 Mar 202322:20	–	circl
CVE	CVE-2020-6817	16 Feb 202300:00	–	cve
Cvelist	CVE-2020-6817	16 Feb 202300:00	–	cvelist
Debian	[SECURITY] [DLA 2167-1] python-bleach security update	1 Apr 202017:53	–	debian
Debian CVE	CVE-2020-6817	16 Feb 202300:00	–	debiancve
Tenable Nessus	Debian DLA-2167-1 : python-bleach security update	2 Apr 202000:00	–	nessus
Tenable Nessus	Fedora 30 : python-bleach (2020-827b677e15)	30 Apr 202000:00	–	nessus
Tenable Nessus	Fedora 31 : python-bleach (2020-e1fa96c506)	30 Apr 202000:00	–	nessus
Tenable Nessus	FreeBSD : py-bleach -- regular expression denial-of-service (4c52ec3c-86f3-11ea-b5b4-641c67a117d8)	27 Apr 202000:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	20.04	any	python-bleach	3.1.1-1ubuntu0.1~esm1	python-bleach_3.1.1-1ubuntu0.1~esm1_any.deb
Ubuntu	18.04	any	python-bleach	2.1.2-1ubuntu0.1~esm1	python-bleach_2.1.2-1ubuntu0.1~esm1_any.deb
Ubuntu	16.04	any	python-bleach	1.4.2-1ubuntu0.1~esm1	python-bleach_1.4.2-1ubuntu0.1~esm1_any.deb

Source	Link
github	www.github.com/mozilla/bleach/security/advisories/GHSA-vqhp-cxgc-6wmm
bugzilla	www.bugzilla.mozilla.org/show_bug.cgi
github	www.github.com/mozilla/bleach/commit/d6018f2539d271963c3e7f54f36ef11900363c69
github	www.github.com/mozilla/bleach/commit/6e74a5027b57055cdaeb040343d32934121392a7
cve	www.cve.org/CVERecord
ubuntu	www.ubuntu.com/security/notices/USN-8077-1

05 Mar 2026 20:01Current

7.1High risk

Vulners AI Score7.1

CVSS 3.17.5

EPSS0.00718

SSVC

bleach clean redos unix cve-2020-6817 bugs debian