virus logo FortiClient Vulnerability

Fedora python CVE-2018-14647 Missing Initialization of Resource Vulnerability

description-logoDescription

Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization. This could make it easy to conduct denial of service attacks against Expat by contructing an XML document that would cause pathological hash collisions in Expat's internal data structures, consuming large amounts CPU and RAM.

affected-products-logoAffected Applications

python

CVE References

CVE-2018-14647

Other References

https://bugzilla.redhat.com/show_bug.cgi?id=1631822
ID 55247
Created Jan 17, 2020
Description
Updated		 Dec 20, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Fedora
Patch auto
Application python