Description
Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.
Remediation
References
Related Vulnerabilities
WordPress Plugin flickr picture backup Arbitrary File Upload (0.7)
WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1)
MediaWiki Other Vulnerability (CVE-2005-3166)
WordPress Plugin Events Manager 'events-manager.php' SQL Injection (2.1)
MediaWiki Improper Authentication Vulnerability (CVE-2018-0505)