CVE-2018-7536

EUVD-2018-0040
An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19. The django.utils.html.urlize() function was extremely slow to evaluate certain inputs due to catastrophic backtracking vulnerabilities in two regular expressions (only one regular expression for Django 1.8.x). The urlize() function is used to implement the urlize and urlizetrunc template filters, which were thus vulnerable.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
Affected Products (NVD)
VendorProductVersion
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
17.10
djangoprojectdjango
1.8 ≤
𝑥
< 1.8.19
djangoprojectdjango
1.11 ≤
𝑥
< 1.11.11
djangoprojectdjango
2.0 ≤
𝑥
< 2.0.3
debiandebian_linux
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
python-django
bookworm
3:3.2.19-1+deb12u1
fixed
bookworm (security)
3:3.2.19-1+deb12u1
fixed
bullseye
2:2.2.28-1~deb11u2
fixed
bullseye (security)
2:2.2.28-1~deb11u2
fixed
sid
3:4.2.16-1
fixed
trixie
3:4.2.16-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
python-django
artful
Fixed 1:1.11.4-1ubuntu1.2
released
trusty
Fixed 1.6.11-0ubuntu1.2
released
xenial
Fixed 1.8.7-1ubuntu5.6
released
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/103361
https://access.redhat.com/errata/RHSA-2018:2927
https://access.redhat.com/errata/RHSA-2019:0051
https://access.redhat.com/errata/RHSA-2019:0082
https://access.redhat.com/errata/RHSA-2019:0265
https://github.com/django/django/commit/1ca63a66ef3163149ad822701273e8a1844192c2
https://github.com/django/django/commit/abf89d729f210c692a50e0ad3f75fb6bec6fae16
https://github.com/django/django/commit/e157315da3ae7005fa0683ffc9751dbeca7306c8
https://lists.debian.org/debian-lts-announce/2018/03/msg00006.html
https://usn.ubuntu.com/3591-1/
https://www.debian.org/security/2018/dsa-4161
https://www.djangoproject.com/weblog/2018/mar/06/security-releases/
http://www.securityfocus.com/bid/103361
https://access.redhat.com/errata/RHSA-2018:2927
https://access.redhat.com/errata/RHSA-2019:0051
https://access.redhat.com/errata/RHSA-2019:0082
https://access.redhat.com/errata/RHSA-2019:0265
https://github.com/django/django/commit/1ca63a66ef3163149ad822701273e8a1844192c2
https://github.com/django/django/commit/abf89d729f210c692a50e0ad3f75fb6bec6fae16
https://github.com/django/django/commit/e157315da3ae7005fa0683ffc9751dbeca7306c8
https://lists.debian.org/debian-lts-announce/2018/03/msg00006.html
https://usn.ubuntu.com/3591-1/
https://www.debian.org/security/2018/dsa-4161
https://www.djangoproject.com/weblog/2018/mar/06/security-releases/