A flaw was found in python's _elementtree.c module, a wrapper for libexpat XML parser. xml.etree C accelerator don't call XML_SetHashSalt(), failing to properly initiate the random hash seed from a good CSPRNG source and making hash collision attacks with carefully crafted XML data easier. Upstream bug: https://bugs.python.org/issue34623.
Acknowledgments: Name: the Python Security Response Team
Note that expat >=2.2.2 will internally initialize the hash salt with a more securely generated value providing arc4random, getrandom or /dev/urandom is available. The risk is greatest on earlier versions of expat (eg 2.1.0) or where such sources are not available.
External References: https://bugs.python.org/issue34623
Created python2 tracking bugs for this issue: Affects: fedora-all [bug 1632089] Created python26 tracking bugs for this issue: Affects: fedora-all [bug 1632084] Created python3 tracking bugs for this issue: Affects: fedora-all [bug 1632085] Created python33 tracking bugs for this issue: Affects: fedora-all [bug 1632088] Created python34 tracking bugs for this issue: Affects: epel-6 [bug 1632091] Affects: epel-7 [bug 1632092] Affects: fedora-all [bug 1632086] Created python35 tracking bugs for this issue: Affects: fedora-all [bug 1632087] Created python36 tracking bugs for this issue: Affects: epel-7 [bug 1632093] Created python37 tracking bugs for this issue: Affects: fedora-all [bug 1632090]
Expat's low-quality hash initialization as known as CVE-2016-5300: https://bugzilla.redhat.com/show_bug.cgi?id=1343085 https://github.com/libexpat/libexpat/pull/30/commits
I miss python36 fedora-all bugzilla.
Created python36 tracking bugs for this issue: Affects: fedora-all [bug 1632531]
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 6 Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 7.4 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS Via RHSA-2019:1260 https://access.redhat.com/errata/RHSA-2019:1260
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2030 https://access.redhat.com/errata/RHSA-2019:2030
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS Red Hat Software Collections for Red Hat Enterprise Linux 6 Via RHSA-2019:3725 https://access.redhat.com/errata/RHSA-2019:3725
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.5 Extended Update Support Via RHSA-2020:1268 https://access.redhat.com/errata/RHSA-2020:1268
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.4 Advanced Update Support Red Hat Enterprise Linux 7.4 Telco Extended Update Support Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions Via RHSA-2020:1346 https://access.redhat.com/errata/RHSA-2020:1346
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.6 Extended Update Support Via RHSA-2020:1462 https://access.redhat.com/errata/RHSA-2020:1462