CVE-2022-45061

python: CPU denial of service via inefficient IDNA decoder

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor; in such a scenario, they could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied supposed hostname. For example, the attack payload could be placed in the Location header of an HTTP response with status code 302. A fix is planned in 3.11.1, 3.10.9, 3.9.16, 3.8.16, and 3.7.16.

Se descubrió un problema en Python antes de la versión 3.11.1. Existe un algoritmo cuadrático innecesario en una ruta cuando se procesan algunas entradas al decodificador IDNA (RFC 3490), de modo que un nombre elaborado e irrazonablemente largo que se presente al decodificador podría provocar una denegación de servicio de la CPU. Los nombres de host suelen ser proporcionados por servidores remotos que podrían estar controlados por un actor malicioso; en tal escenario, podrían desencadenar un consumo excesivo de CPU en el cliente que intenta hacer uso de un supuesto nombre de host proporcionado por el atacante. Por ejemplo, el payload del ataque podría colocarse en el encabezado Ubicación de una respuesta HTTP con el código de estado 302. Está prevista una solución en 3.11.1, 3.10.9, 3.9.16, 3.8.16 y 3.7.16.

A vulnerability was discovered in Python. A quadratic algorithm exists when processing inputs to the IDNA (RFC 3490) decoder, such that a crafted unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor, which could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied hostname.

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-11-09 CVE Reserved
2022-11-09 CVE Published
2024-06-30 EPSS Updated
2024-08-03 CVE Updated
2024-08-03 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-400: Uncontrolled Resource Consumption
CWE-407: Inefficient Algorithmic Complexity

CAPEC

References (36)

URL	Tag	Source
https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html	Mailing List
https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html	Mailing List
https://security.netapp.com/advisory/ntap-20221209-0007	Third Party Advisory

URL	Date	SRC
https://github.com/python/cpython/issues/98433	2024-08-03

URL	Date	SRC

URL	Date	SRC
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK	2023-11-07
https://security.gentoo.org/glsa/202305-02	2023-11-07
https://access.redhat.com/security/cve/CVE-2022-45061	2024-01-25
https://bugzilla.redhat.com/show_bug.cgi?id=2144072	2024-01-25

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Netapp Search vendor "Netapp"	Bootstrap Os Search vendor "Netapp" for product "Bootstrap Os"	-	-	Affected	in	Netapp Search vendor "Netapp"	Hci Compute Node Search vendor "Netapp" for product "Hci Compute Node"	-	-	Safe
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				<= 3.7.15 Search vendor "Python" for product "Python" and version " <= 3.7.15"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.8.0 <= 3.8.15 Search vendor "Python" for product "Python" and version " >= 3.8.0 <= 3.8.15"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.9.0 <= 3.9.15 Search vendor "Python" for product "Python" and version " >= 3.9.0 <= 3.9.15"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				>= 3.10.0 <= 3.10.8 Search vendor "Python" for product "Python" and version " >= 3.10.0 <= 3.10.8"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		-		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha1		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha2		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha3		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha4		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha5		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha6		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		alpha7		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta1		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta2		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta3		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta4		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		beta5		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		rc1		Affected
Python Search vendor "Python"		Python Search vendor "Python" for product "Python"				3.11.0 Search vendor "Python" for product "Python" and version "3.11.0"		rc2		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				35 Search vendor "Fedoraproject" for product "Fedora" and version "35"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				36 Search vendor "Fedoraproject" for product "Fedora" and version "36"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				37 Search vendor "Fedoraproject" for product "Fedora" and version "37"		-		Affected
Netapp Search vendor "Netapp"		Active Iq Unified Manager Search vendor "Netapp" for product "Active Iq Unified Manager"				-		vmware_vsphere		Affected
Netapp Search vendor "Netapp"		Active Iq Unified Manager Search vendor "Netapp" for product "Active Iq Unified Manager"				-		windows		Affected
Netapp Search vendor "Netapp"		E-series Performance Analyzer Search vendor "Netapp" for product "E-series Performance Analyzer"				-		-		Affected
Netapp Search vendor "Netapp"		Element Software Search vendor "Netapp" for product "Element Software"				-		-		Affected
Netapp Search vendor "Netapp"		Hci Search vendor "Netapp" for product "Hci"				-		-		Affected
Netapp Search vendor "Netapp"		Management Services For Element Software Search vendor "Netapp" for product "Management Services For Element Software"				-		-		Affected
Netapp Search vendor "Netapp"		Ontap Select Deploy Administration Utility Search vendor "Netapp" for product "Ontap Select Deploy Administration Utility"				-		-		Affected