An uncontrolled resource consumption flaw has been discovered in redhat-certification in the way documents are loaded in DocumentBase:loadFiltered in the documentbase.py file. A remote attacker may provide an existing but invalid XML file which would be opened and never closed, possibly producing a Denial of Service.
Name: Riccardo Schirone (Red Hat Product Security)
This issue has been addressed in the following products:
Red Hat Certification for Red Hat Enterprise Linux 7
Via RHSA-2018:2373 https://access.redhat.com/errata/RHSA-2018:2373