python is vulnerable to denial of service. A null pointer dereference vulnerability was found in the certificate parsing code in Python. This causes a denial of service to applications when parsing specially crafted certificates. This vulnerability is unlikely to be triggered if application enables SSL/TLS certificate validation and accepts certificates only from trusted root certificate authorities.
lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
access.redhat.com/errata/RHSA-2019:2030
access.redhat.com/errata/RHSA-2019:3520
access.redhat.com/errata/RHSA-2019:3725
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1629982
bugzilla.redhat.com/show_bug.cgi?id=1703600
lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E
lists.debian.org/debian-lts-announce/2020/07/msg00011.html
lists.debian.org/debian-lts-announce/2020/08/msg00034.html
security.gentoo.org/glsa/202003-26
talosintelligence.com/vulnerability_reports/TALOS-2019-0758