python security update

2009-07-27T00:00:00
ID ELSA-2009-1176
Type oraclelinux
Reporter Oracle
Modified 2009-07-27T00:00:00

Description

[2.4.3-24.el5_3.6] - Fix all of the low priority security bugs: - Resolves: rhbz#486351 - Multiple integer overflows in python core (CVE-2008-2315) - Resolves: 455008 - PyString_FromStringAndSize does not check for negative size values (CVE-2008-1887) - Resolves: 443810 - Multiple integer overflows discovered by Google (CVE-2008-3143) - Resolves: 455013 - Multiple buffer overflows in unicode processing (CVE-2008-3142) - Resolves: 454990 - Potential integer underflow and overflow in the PyOS_vsnprintf C API function (CVE-2008-3144) - Resolves: 455018 - imageop module multiple integer overflows (CVE-2008-4864) - Resolves: 469656 - stringobject, unicodeobject integer overflows (CVE-2008-5031) - Resolves: 470915 - integer signedness error in the zlib extension module (CVE-2008-1721) - Resolves: 442005 - off-by-one locale.strxfrm() (possible memory disclosure) (CVE-2007-2052) - Resolves: 235093 - imageop module heap corruption (CVE-2007-4965) - Resolves: 295971