Lucene search
RedHatRHSA-2005:108HistoryFeb 15, 2005 - 12:00 a.m.
(RHSA-2005:108) python security update
2005-02-1500:00:00
access.redhat.com
16
EPSS
0.128
Percentile
95.5%
Python is an interpreted, interactive, object-oriented programming language.
An object traversal bug was found in the Python SimpleXMLRPCServer. This
bug could allow a remote untrusted user to do unrestricted object traversal
and allow them to access or change function internals using the im_* and
func_* attributes. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2005-0089 to this issue.
Users of Python are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ppc | python-devel | < 2.3.4-14.1 | python-devel-2.3.4-14.1.ppc.rpm |
| RedHat | any | ia64 | python | < 2.3.4-14.1 | python-2.3.4-14.1.ia64.rpm |
| RedHat | any | i386 | tkinter | < 2.3.4-14.1 | tkinter-2.3.4-14.1.i386.rpm |
| RedHat | any | x86_64 | python-tools | < 2.3.4-14.1 | python-tools-2.3.4-14.1.x86_64.rpm |
| RedHat | any | ppc | python | < 2.3.4-14.1 | python-2.3.4-14.1.ppc.rpm |
| RedHat | any | s390x | python-devel | < 2.3.4-14.1 | python-devel-2.3.4-14.1.s390x.rpm |
| RedHat | any | i386 | python | < 2.3.4-14.1 | python-2.3.4-14.1.i386.rpm |
| RedHat | any | ia64 | python-tools | < 2.3.4-14.1 | python-tools-2.3.4-14.1.ia64.rpm |
| RedHat | any | x86_64 | python | < 2.3.4-14.1 | python-2.3.4-14.1.x86_64.rpm |
| RedHat | any | s390 | python-docs | < 2.3.4-14.1 | python-docs-2.3.4-14.1.s390.rpm |
Related
debian
debian
freebsd
freebsd
python -- SimpleXMLRPCServer.py allows unrestricted traversal
2005-02-03 00:00:00
gentoo
gentoo
Python: Arbitrary code execution through SimpleXMLRPCServer
2005-02-08 00:00:00
openvas
openvas
SLES9: Security update for python
2009-10-10 00:00:00
SLES9: Security update for python
2009-10-10 00:00:00
Debian: Security Advisory (DSA-666-1)
2008-01-17 00:00:00
ubuntu
ubuntu
Python vulnerability
2005-02-04 00:00:00
nvd
nvd
CVE-2005-0089
2005-05-02 04:00:00
nessus
nessus
RHEL 3 : python (RHSA-2005:109)
2005-02-14 00:00:00
Ubuntu 4.10 : python2.2, python2.3 vulnerability (USN-73-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : python (MDKSA-2005:035)
2005-02-11 00:00:00
cve
cve
CVE-2005-0089
2005-05-02 04:00:00
cvelist
cvelist
CVE-2005-0089
2005-02-06 05:00:00
ubuntucve
ubuntucve
CVE-2005-0089
2005-05-02 00:00:00
securityvulns
securityvulns
Python Security Advisory PSF-2005-001 - SimpleXMLRPCServer.py
2005-02-04 00:00:00
redhat
redhat
(RHSA-2005:109) python security update
2005-02-14 00:00:00
osv
osv
python2.2 - design flaw
2005-02-04 00:00:00
cert
cert
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00