SUSE-SU-2016:2270-1 Security update for python

This update for python fixes the following issues: - CVE-2016-0772: smtplib vulnerability opens startTLS stripping attack bsc984751 - CVE-2016-5699: incorrect validation of HTTP headers allow header injection bsc985348 - CVE-2016-1000110: HTTPoxy vulnerability in urllib, fixed by disregarding...

CVE-2016-5699

CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython aka Python before 2.7.10 and 3.x before 3.4.4 allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in a URL...

Python 3.3 3.5 - product_setstate() Out-of-Bounds Read

Python 3.3 3.5 - productsetstate Out-of-Bounds Read Title: Python 3.3 - 3.5 productsetstate Out-of-bounds Read Credit: John Leitch [email protected], Bryce Darling [email protected] Url1: http://autosectools.com/Page/Python-productsetstate-Out-of-bounds-Read Url2:...

file, python security update

CentOS Errata and Security Advisory CESA-2014:1606 Updated file packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS...

CVE-2014-7185

Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent attackers to obtain sensitive information from process memory via a large size and offset in a "buffer" function...

Updated python3 packages fix security vulnerability

It was reported that a patch added to Python 3.2 caused a race condition where a file created could be created with world read/write permissions instead of the permissions dictated by the original umask of the process. This could allow a local attacker that could win the race to view and edit fil...

Internet Bug Bounty: Integer overflow in strop.expandtabs

This issue was originally disclosed directly to the Python Security Response Team Here's a bug in a string handling function which might be reachable in some "sandboxed python" environments, and maybe at a stretch remotely if someone were to offer "expanding-tabs-in-strings"-as-a-service... Bug:...

[SECURITY] [DSA 2880-1] python2.7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2880-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 17, 2014 http://www.debian.org/security/faq -...

DSA-2880-1 python2.7 - security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: python security, bug fix, and enhancement update

Updated python packages that fix one security issue, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2013:0630 Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

python security, bug fix, and enhancement update

python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...

python security and bug fix update

2.3.4-14.9 - rgbimg module integer overflows CVE-2010-1450 Resolves: rhbz650936 2.3.4-14.8 - Backport fix for socket.htons on s390x from 2.4 patch 37 - Resolves: rhbz513341 - Backport fixes for grp.getgrgid patch 38 and for pwd.getpwuid patch 39 - Resolves: rhbz497540 - Backport fixes to strptime...

python security update

2.4.3-24.el53.6 - Fix all of the low priority security bugs: - Resolves: rhbz486351 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...

openSUSE 10 Security Update : python (python-5491)

This update of python fixes several security vulnerabilities. CVE-2008-1679,CVE-2008-1887, CVE-2008-3143, CVE-2008-3142, CVE-2008-3144, CVE-2008-2315, CVE-2008-2316 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

CVE-2007-4965

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service application crash and possibly obtain sensitive information memory contents via crafted arguments to 1 the tovideo method, and unspecified other vectors...

RHEL 4 : python (RHSA-2005:108)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2005:108 advisory. Python is an interpreted, interactive, object-oriented programming language. An object traversal bug was found in the Python SimpleXMLRPCServer. This...

Important: Red Hat Security Advisory: python security update

Updated Python packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team Python is an interpreted, interactive, object-oriented programming language. An object...

Important: Red Hat Security Advisory: python security update

Updated Python packages that fix a security issue are now available for Red Hat Enterprise Linux 3. Python is an interpreted, interactive, object-oriented programming language. An object traversal bug was found in the Python SimpleXMLRPCServer. This bug could allow a remote untrusted user to do...

RHEL 3 : python (RHSA-2005:109)

Updated Python packages that fix a security issue are now available for Red Hat Enterprise Linux 3. Python is an interpreted, interactive, object-oriented programming language. An object traversal bug was found in the Python SimpleXMLRPCServer. This bug could allow a remote untrusted user to do...