REDHAT-BUG-2274779: Medium severity kjd idna vulnerability
A specially crafted argument to the idna.encode() function could consume significant resources. This may lead to a denial-of-service.
Reference: https://github.com/kjd/idna/security/advisories/GHSA-jjg7-2v4v-x38h
Affected Software
Event History
Frequently Asked Questions
What is the severity of REDHAT-BUG-2274779?
REDHAT-BUG-2274779 is classified as a denial-of-service vulnerability that can consume significant system resources.
How do I fix REDHAT-BUG-2274779?
To mitigate REDHAT-BUG-2274779, update to an unaffected version of KJD idna as per the security advisory.
What causes the denial-of-service in REDHAT-BUG-2274779?
The denial-of-service in REDHAT-BUG-2274779 is caused by a specially crafted argument passed to the idna.encode() function.
Which software is affected by REDHAT-BUG-2274779?
The KJD idna library is affected by vulnerability REDHAT-BUG-2274779.
What are the potential impacts of REDHAT-BUG-2274779?
The potential impacts of REDHAT-BUG-2274779 include system slowdown or unavailability due to significant resource consumption.