CVE-2020-10735

python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes(), and int() for binary bases 2, 4, 8, 16, and 32 are not affected). The highest threat from this vulnerability is to system availability.

Se ha encontrado un fallo en python. En los algoritmos con complejidad de tiempo cuadrática que usan bases no binarias, cuando es usada int("text"), un sistema podría tardar 50ms en analizar una cadena int con 100.000 dígitos y 5s para 1.000.000 de dígitos (float, decimal, int.from_bytes(), e int() para bases binarias 2, 4, 8, 16, y 32 no están afectados). La mayor amenaza de esta vulnerabilidad es la disponibilidad del sistema

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-03-20 CVE Reserved
2022-09-09 CVE Published
2024-04-30 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-400: Uncontrolled Resource Consumption
CWE-704: Incorrect Type Conversion or Cast

CAPEC

References (27)

URL	Tag	Source
http://www.openwall.com/lists/oss-security/2022/09/21/1	Mailing List
http://www.openwall.com/lists/oss-security/2022/09/21/4	Mailing List
https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

URL	Date	SRC

URL	Date	SRC
https://github.com/python/cpython/issues/95778	2023-06-30

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2020-10735	2023-06-30
https://bugzilla.redhat.com/show_bug.cgi?id=1834423	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VCU6EVQDIXNCEDJUCTFIER2WVNNDTYZ	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/32AAQKABEKFCB5DDV5OONRZK6BS23HPW	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EWKR2SPX3JORLWCXFY3KN2U5B5CIUQQ	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XL6E5A3I36TRR73VNBOXNIQP4AMZDFZ	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/76YE7AM37MRU76XJV4M27CWDAMUGNRYK	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSRPVJZL6DJFWKYRHMNJB7VCEUCBKRF5	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NHC6IUU7CLRQ3QLPWUXLONSG3SXFTR47	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5U223OE5ZOUHZAZYSYSWVJQIKDE73E	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5WQB7Z3CXOWVBD2AFAHYPA5ONYFFZ4	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PD7FTLJOIGMUSCDR3JAN6WRFHJEE4PH5	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZYJSGLSCQOKXXFVJVJQAXLEOJBIWGEL	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TD7JDDKJXK6D26XAN3YRFNM2LAJHT5UO	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMWPRAAJS7I6U3U45V7GZVXWNSECI22M	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4ZZV4CDFRMTPDBI7C5L43RFL3XLIGUY	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBPDVCDIUCEBE7C4NAGNA2KQJYOTPBAZ	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V7ZUJDHK7KNG6SLIFXW7MNZ6O2PUJYK6	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC	2023-06-30
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZEOAJWGGY55QU35UM2OVZATBW5MX2OZD	2023-06-30

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.7.0 < 3.7.14 Search vendor "Python" for product "Python" and version " >= 3.7.0 < 3.7.14"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.8.0 < 3.8.14 Search vendor "Python" for product "Python" and version " >= 3.8.0 < 3.8.14"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.9.0 < 3.9.14 Search vendor "Python" for product "Python" and version " >= 3.9.0 < 3.9.14"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.10.0 < 3.10.7 Search vendor "Python" for product "Python" and version " >= 3.10.0 < 3.10.7"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha1		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha2		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha3		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha4		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha5		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha6		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha7		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta1		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta2		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta3		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta4		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta5		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		rc1		Affected
Redhat Search vendor "Redhat"		Quay Search vendor "Redhat" for product "Quay"				3.0.0 Search vendor "Redhat" for product "Quay" and version "3.0.0"		-		Affected
Redhat Search vendor "Redhat"		Software Collections Search vendor "Redhat" for product "Software Collections"				-		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				35 Search vendor "Fedoraproject" for product "Fedora" and version "35"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				36 Search vendor "Fedoraproject" for product "Fedora" and version "36"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				37 Search vendor "Fedoraproject" for product "Fedora" and version "37"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				8.0 Search vendor "Redhat" for product "Enterprise Linux" and version "8.0"		-		Affected