Python is an interpreted, interactive, object-oriented programming language.
An object traversal bug was found in the Python SimpleXMLRPCServer. This
bug could allow a remote untrusted user to do unrestricted object traversal
and allow them to access or change function internals using the im_* and
func_* attributes. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2005-0089 to this issue.
Users of Python are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ppc | python-devel | < 2.3.4-14.1 | python-devel-2.3.4-14.1.ppc.rpm |
RedHat | any | ia64 | python | < 2.3.4-14.1 | python-2.3.4-14.1.ia64.rpm |
RedHat | any | i386 | tkinter | < 2.3.4-14.1 | tkinter-2.3.4-14.1.i386.rpm |
RedHat | any | x86_64 | python-tools | < 2.3.4-14.1 | python-tools-2.3.4-14.1.x86_64.rpm |
RedHat | any | ppc | python | < 2.3.4-14.1 | python-2.3.4-14.1.ppc.rpm |
RedHat | any | s390x | python-devel | < 2.3.4-14.1 | python-devel-2.3.4-14.1.s390x.rpm |
RedHat | any | i386 | python | < 2.3.4-14.1 | python-2.3.4-14.1.i386.rpm |
RedHat | any | ia64 | python-tools | < 2.3.4-14.1 | python-tools-2.3.4-14.1.ia64.rpm |
RedHat | any | x86_64 | python | < 2.3.4-14.1 | python-2.3.4-14.1.x86_64.rpm |
RedHat | any | s390 | python-docs | < 2.3.4-14.1 | python-docs-2.3.4-14.1.s390.rpm |