[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2013-0252":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":60,"epss":9,"epss_history":61,"metrics":62,"affected":63},"MGASA-2013-0252","Updated python3, bzr and some python packages fix security vulnerabilties\n\nUpdated python3 packages fix security vulnerabilities:\n\nA denial of service flaw was found in the way SSL module implementation of\nPython 3 performed matching of the certificate's name in the case it contained\nmany '*' wildcard characters. A remote attacker, able to obtain valid\ncertificate with its name containing a lot of '*' wildcard characters could use\nthis flaw to cause denial of service (excessive CPU consumption) by issuing\nrequest to validate such a certificate for / to an application using the\nPython's ssl.match_hostname() functionality (CVE-2013-2099).\n\nRyan Sleevi of the Google Chrome Security Team has discovered that Python's SSL\nmodule doesn't handle NULL bytes inside subjectAltNames general names. This\ncould lead to a breach when an application uses ssl.match_hostname() to match\nthe hostname againt the certificate's subjectAltName's dNSName general names.\n(CVE-2013-4238).\n\nAdditionally, a linking issue when compiling C extensions for Python 3 has been\nfixed in Mageia 3 (mga#9395).\n\nThe CVE-2013-2099 issue also affects bzr, python-requests, python-tornado,\npython-pip, and python-virtualenv, and those have been updated as well.\n",null,[],[],[],[14,16],{"_key":15},"CVE-2013-2099",{"_key":17},"CVE-2013-4238",[],[],[21,22],{"_key":15},{"_key":17},"2013-08-22T17:58:14Z","2026-04-16T06:22:21.389869348Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,34,39,43,47,51,56],{"url":29,"sources":30,"tags":32},"https://advisories.mageia.org/MGASA-2013-0252.html",[31],"osv_mageia",[33],"Advisory",{"url":35,"sources":36,"tags":37},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2099",[31],[38,33],"REPORT",{"url":40,"sources":41,"tags":42},"http://bugs.python.org/issue18709",[31],[38],{"url":44,"sources":45,"tags":46},"https://bugs.mageia.org/show_bug.cgi?id=9395",[31],[38],{"url":48,"sources":49,"tags":50},"https://bugs.mageia.org/show_bug.cgi?id=10989",[31],[38],{"url":52,"sources":53,"tags":54},"https://lists.fedoraproject.org/pipermail/package-announce/2013-June/107957.html",[31],[38,55],"WEB",{"url":57,"sources":58,"tags":59},"https://bugs.mageia.org/show_bug.cgi?id=10391",[31],[38],[],[],[],[64,76,82,88,93,99,105,110,116],{"ecosystem":65,"name":66,"vendor":67,"product":66,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":66,"source":9,"versions":69},"Mageia","bzr","mageia","rpm",[70],{"version":71,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":74,"version_end_type":75,"fixed_in":9},"lt2_5_1_1_1_mga2",true,"ecosystem","2.5.1-1.1.mga2","excluding",{"ecosystem":65,"name":77,"vendor":67,"product":77,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":77,"source":9,"versions":78},"python-tornado",[79],{"version":80,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":81,"version_end_type":75,"fixed_in":9},"lt2_2_1_1_1_mga2","2.2.1-1.1.mga2",{"ecosystem":65,"name":83,"vendor":67,"product":83,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":83,"source":9,"versions":84},"python3",[85],{"version":86,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":87,"version_end_type":75,"fixed_in":9},"lt3_2_3_1_5_mga2","3.2.3-1.5.mga2",{"ecosystem":65,"name":66,"vendor":67,"product":66,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":66,"source":9,"versions":89},[90],{"version":91,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":92,"version_end_type":75,"fixed_in":9},"lt2_5_1_3_1_mga3","2.5.1-3.1.mga3",{"ecosystem":65,"name":94,"vendor":67,"product":94,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":94,"source":9,"versions":95},"python-pip",[96],{"version":97,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":98,"version_end_type":75,"fixed_in":9},"lt1_3_1_2_1_mga3","1.3.1-2.1.mga3",{"ecosystem":65,"name":100,"vendor":67,"product":100,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":100,"source":9,"versions":101},"python-requests",[102],{"version":103,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":75,"fixed_in":9},"lt0_13_5_2_1_mga3","0.13.5-2.1.mga3",{"ecosystem":65,"name":77,"vendor":67,"product":77,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":77,"source":9,"versions":106},[107],{"version":108,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":109,"version_end_type":75,"fixed_in":9},"lt2_3_2_1_mga3","2.3-2.1.mga3",{"ecosystem":65,"name":111,"vendor":67,"product":111,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":111,"source":9,"versions":112},"python-virtualenv",[113],{"version":114,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":115,"version_end_type":75,"fixed_in":9},"lt1_9_1_1_2_mga3","1.9.1-1.2.mga3",{"ecosystem":65,"name":83,"vendor":67,"product":83,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":83,"source":9,"versions":117},[118],{"version":119,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":120,"version_end_type":75,"fixed_in":9},"lt3_3_0_4_3_mga3","3.3.0-4.3.mga3"]