|
Home Forum Radio Memberlist Help Search Quick Links | |
| Forum Index » Operating Systems » Linux » Mandriva- Advisories MDVSA-2008:164: python |
| Linux All distros and thier applications |
 |
 |
|
Thread Tools | Display Modes |  |
|
#1
08-08-2008, 02:14 AM
|
||||
|
||||
|
Mandriva- Advisories MDVSA-2008:164: python
Advisories MDVSA-2008:164: python
Multiple integer overflows in the imageop module in Python prior to 2.5.3 allowed context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows (CVE-2008-1679). This was due to an incomplete fix for CVE-2007-4965. David Remahl of Apple Product Security reported several integer overflows in a number of core modules (CVE-2008-2315). Justin Ferguson reported multiple buffer overflows in unicode string processing that affected 32bit systems (CVE-2008-3142). Multiple integer overflows were reported by the Google Security Team that had been fixed in Python 2.5.2 (CVE-2008-3143). Justin Ferguson reported a number of integer overflows and underflows in the PyOS_vsnprintf() function, as well as an off-by-one error when passing zero-length strings, that led to memory corruption (CVE-2008-3144). The updated packages have been patched to correct these issues. As well, Python packages on Corporate Server 4 have been updated to the latest version 2.4.5. http://mandrivausers.org/index.php?showtopic=65444 http://mandrivausers.org/index.php?showtopic=65444 Fri, 08 Aug 2008 03:01:19 +0000 
|
 Posted |
|
| Bookmarks |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
|
|
|
||
|
|
|
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
