Description
Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21284 Vulnerability (CVE-2022-21284)
WordPress Plugin St-Daily-Tip Cross-Site Request Forgery (4.7)
WordPress Plugin PG Flash Gallery Cross-Site Scripting (4.1.1)
Atlassian Confluence Incorrect Default Permissions Vulnerability (CVE-2017-9505)
WordPress Plugin Image Slider Cross-Site Request Forgery (1.1.121)