CVE-2017-18361

In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause an infinite loop thereby causing a denial of service via an unclosed parenthesis. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt