{ "threat_severity" : "Important", "public_date" : "2019-03-06T00:00:00Z", "bugzilla" : { "description" : "python: Information Disclosure due to urlsplit improper NFKC normalization", "id" : "1688543", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1688543" }, "cvss3" : { "cvss3_base_score" : "9.8", "cvss3_scoring_vector" : "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status" : "verified" }, "cwe" : "CWE-172", "details" : [ "Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (credentials, cookies, etc. that are cached against a given hostname). The components are: urllib.parse.urlsplit, urllib.parse.urlparse. The attack vector is: A specially crafted URL could be incorrectly parsed to locate cookies or authentication data and send that information to a different host than when parsed correctly. This is fixed in: v2.7.17, v2.7.17rc1, v2.7.18, v2.7.18rc1; v3.5.10, v3.5.10rc1, v3.5.7, v3.5.8, v3.5.8rc1, v3.5.8rc2, v3.5.9; v3.6.10, v3.6.10rc1, v3.6.11, v3.6.11rc1, v3.6.12, v3.6.9, v3.6.9rc1; v3.7.3, v3.7.3rc1, v3.7.4, v3.7.4rc1, v3.7.4rc2, v3.7.5, v3.7.5rc1, v3.7.6, v3.7.6rc1, v3.7.7, v3.7.7rc1, v3.7.8, v3.7.8rc1, v3.7.9.", "It was discovered that python's functions urllib.parse.urlsplit and urllib.parse.urlparse do not properly handle URLs encoded with Punycode/Internationalizing Domain Names in Applications (IDNA), which may result in a wrong domain name (specifically the netloc component of URL - user@domain:port) being returned by those functions. When an application parses user-supplied URLs to store cookies, authentication credentials, or other kind of information, it is possible for an attacker to provide specially crafted URLs to make the application locate host-related information (e.g. cookies, authentication data) and send them to a different host than where it should, unlike if the URLs had been correctly parsed. The result of an attack may vary based on the application." ], "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2019-06-13T00:00:00Z", "advisory" : "RHSA-2019:1467", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "python-0:2.6.6-68.el6_10" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2019-04-08T00:00:00Z", "advisory" : "RHSA-2019:0710", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "python-0:2.7.5-77.el7_6" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date" : "2019-10-23T00:00:00Z", "advisory" : "RHSA-2019:3170", "cpe" : "cpe:/o:redhat:rhel_aus:7.4", "package" : "python-0:2.7.5-59.el7_4" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Telco Extended Update Support", "release_date" : "2019-10-23T00:00:00Z", "advisory" : "RHSA-2019:3170", "cpe" : "cpe:/o:redhat:rhel_tus:7.4", "package" : "python-0:2.7.5-59.el7_4" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions", "release_date" : "2019-10-23T00:00:00Z", "advisory" : "RHSA-2019:3170", "cpe" : "cpe:/o:redhat:rhel_e4s:7.4", "package" : "python-0:2.7.5-59.el7_4" }, { "product_name" : "Red Hat Enterprise Linux 7.5 Extended Update Support", "release_date" : "2019-10-08T00:00:00Z", "advisory" : "RHSA-2019:2980", "cpe" : "cpe:/o:redhat:rhel_eus:7.5", "package" : "python-0:2.7.5-70.el7_5" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-05-07T00:00:00Z", "advisory" : "RHSA-2019:0981", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "python27:2.7-8000020190410132513.c0efe978" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-05-07T00:00:00Z", "advisory" : "RHSA-2019:0997", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "python3-0:3.6.8-2.el8_0" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-05-07T00:00:00Z", "advisory" : "RHSA-2019:0997", "cpe" : "cpe:/o:redhat:enterprise_linux:8", "package" : "python3-0:3.6.8-2.el8_0" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHSA-2019:0765", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el6", "package" : "rh-python36-python-0:3.6.3-4.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date" : "2019-04-23T00:00:00Z", "advisory" : "RHSA-2019:0806", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el6", "package" : "python27-python-0:2.7.13-4.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date" : "2019-04-30T00:00:00Z", "advisory" : "RHSA-2019:0902", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el6", "package" : "rh-python35-python-0:3.5.1-12.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHSA-2019:0765", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python36-python-0:3.6.3-7.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date" : "2019-04-23T00:00:00Z", "advisory" : "RHSA-2019:0806", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "python27-python-0:2.7.13-6.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date" : "2019-04-30T00:00:00Z", "advisory" : "RHSA-2019:0902", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python35-python-0:3.5.1-12.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.4 EUS", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHSA-2019:0765", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python36-python-0:3.6.3-7.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.4 EUS", "release_date" : "2019-04-23T00:00:00Z", "advisory" : "RHSA-2019:0806", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "python27-python-0:2.7.13-6.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.4 EUS", "release_date" : "2019-04-30T00:00:00Z", "advisory" : "RHSA-2019:0902", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python35-python-0:3.5.1-12.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHSA-2019:0765", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python36-python-0:3.6.3-7.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date" : "2019-04-23T00:00:00Z", "advisory" : "RHSA-2019:0806", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "python27-python-0:2.7.13-6.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date" : "2019-04-30T00:00:00Z", "advisory" : "RHSA-2019:0902", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python35-python-0:3.5.1-12.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHSA-2019:0765", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python36-python-0:3.6.3-7.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date" : "2019-04-23T00:00:00Z", "advisory" : "RHSA-2019:0806", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "python27-python-0:2.7.13-6.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date" : "2019-04-30T00:00:00Z", "advisory" : "RHSA-2019:0902", "cpe" : "cpe:/a:redhat:rhel_software_collections:3::el7", "package" : "rh-python35-python-0:3.5.1-12.el7" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHBA-2019:0763", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "redhat-release-virtualization-host-0:4.2-8.4.el7" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHBA-2019:0763", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "redhat-virtualization-host-0:4.2-20190411.1.el7_6" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2019-04-16T00:00:00Z", "advisory" : "RHBA-2019:0764", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "rhvm-appliance-0:4.2-20190411.1.el7" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Out of support scope", "package_name" : "python", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "python3", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "python36:3.6/python36", "cpe" : "cpe:/o:redhat:enterprise_linux:8" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2019-9636\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-9636\nhttps://python-security.readthedocs.io/vuln/urlsplit-nfkc-normalization.html" ], "name" : "CVE-2019-9636", "csaw" : false }