1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
9.4%
Package : python2.6
Version : 2.6.6-8+deb6u1
CVE ID : CVE-2011-1015 CVE-2011-1521 CVE-2011-4940 CVE-2011-4944
CVE-2012-0845 CVE-2012-1150 CVE-2013-4238 CVE-2014-1912
Multiple vulnerabilities were discovered in python2.6. The more
relevant are:
CVE-2013-4238
Incorrect handling of NUL bytes in certificate hostnames may allow
server spoofing via specially-crafted certificates signed by
a trusted Certification Authority.
CVE-2014-1912
Buffer overflow in socket.recvfrom_into leading to application
crash and possibly code execution.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 6 | all | python2.6-doc | < 2.6.6-8+deb6u1 | python2.6-doc_2.6.6-8+deb6u1_all.deb |
Debian | 6 | all | idle-python2.6 | < 2.6.6-8+deb6u1 | idle-python2.6_2.6.6-8+deb6u1_all.deb |
Debian | 6 | amd64 | libpython2.6 | < 2.6.6-8+deb6u1 | libpython2.6_2.6.6-8+deb6u1_amd64.deb |
Debian | 6 | amd64 | python2.6 | < 2.6.6-8+deb6u1 | python2.6_2.6.6-8+deb6u1_amd64.deb |
Debian | 6 | amd64 | python2.6-minimal | < 2.6.6-8+deb6u1 | python2.6-minimal_2.6.6-8+deb6u1_amd64.deb |
Debian | 6 | all | python2.6 | < 2.6.6-8+deb6u1 | python2.6_2.6.6-8+deb6u1_all.deb |
Debian | 6 | amd64 | python2.6-dev | < 2.6.6-8+deb6u1 | python2.6-dev_2.6.6-8+deb6u1_amd64.deb |
Debian | 6 | i386 | libpython2.6 | < 2.6.6-8+deb6u1 | libpython2.6_2.6.6-8+deb6u1_i386.deb |
Debian | 6 | i386 | python2.6-minimal | < 2.6.6-8+deb6u1 | python2.6-minimal_2.6.6-8+deb6u1_i386.deb |
Debian | 6 | i386 | python2.6-dev | < 2.6.6-8+deb6u1 | python2.6-dev_2.6.6-8+deb6u1_i386.deb |