3115 matches found
python imageop module heap corruption
Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service application crash and possibly obtain sensitive information memory contents via crafted arguments to 1 the tovideo method, and unspecified other vectors...
python: stringobject, unicodeobject integer overflows
Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by 1 the stringexpandtabs function in Objects/stringobject.c and 2 the...
python: Multiple integer overflows discovered by Google
Multiple integer overflows in Python before 2.5.2 might allow context-dependent attackers to have an unknown impact via vectors related to 1 Include/pymem.h; 2 csv.c, 3 struct.c, 4 arraymodule.c, 5 audioop.c, 6 binascii.c, 7 cPickle.c, 8 cStringIO.c, 9 cjkcodecs/multibytecodec.c, 10...
python: Multiple integer overflows in python core
Multiple integer overflows in Python 2.5.2 and earlier allow context-dependent attackers to have an unknown impact via vectors related to the 1 stringobject, 2 unicodeobject, 3 bufferobject, 4 longobject, 5 tupleobject, 6 stropmodule, 7 gcmodule, and 8 mmapmodule modules. NOTE: The expandtabs...
python security update
2.4.3-24.el53.6 - Fix all of the low priority security bugs: - Resolves: rhbz486351 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...
python security update
2.3.4-14.7.el48.2 - Fix all of the low priority security bugs: - Resolves: rhbz486329 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...
python security update
2.2.3-6.11 - Fix all of the low priority security bugs: - Resolves: rhbz486114 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows discovered ...
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 : python2.4, python2.5 vulnerabilities (USN-806-1)
It was discovered that Python incorrectly handled certain arguments in the imageop module. If an attacker were able to pass specially crafted arguments through the crop function, they could execute arbitrary code with user privileges. For Python 2.5, this issue only affected Ubuntu 8.04 LTS...
USN-806-1: Python vulnerabilities
It was discovered that Python incorrectly handled certain arguments in the imageop module. If an attacker were able to pass specially crafted arguments through the crop function, they could execute arbitrary code with user privileges. For Python 2.5, this issue only affected Ubuntu 8.04 LTS...
CVE-2009-2463
Multiple integer overflows in the 1 PLBase64Decode and 2 PLBase64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash...
CVE-2009-2463
Multiple integer overflows in the 1 PLBase64Decode and 2 PLBase64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash...
CVE-2009-2463
CVE-2009-2463 is a browser vulnerability described for Mozilla Firefox before 3.0.12 (and related Thunderbird/SeaMonkey components in older advisories) involving integer overflows in PL_Base64Decode/PL_Base64Encode within nsprpub/lib/libc/src/base64.c. The issue can trigger memory corruption and ...
CVE-2009-2463
Multiple integer overflows in the 1 PLBase64Decode and 2 PLBase64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash...
CVE-2009-2463
Multiple integer overflows in the 1 PLBase64Decode and 2 PLBase64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash...
Multiple Mozilla Firefox security vulnerabilities
Multiple memory corruptions, crossite access, integer overflows, buffer overflows...
openSUSE Security Update : finch (finch-1088)
Several bugfixes were done for the Instant Messenger Pidgin : - Malformed responses to file transfers could cause a buffer overflow in pidgin CVE-2009-1373 and specially crafted packets could crash it CVE-2009-1375. - The fix against integer overflows in the msn protocol handling was incomplete...
openSUSE Security Update : gstreamer-0_10-plugins-good (gstreamer-0_10-plugins-good-989)
Specially crafted files could cause integer overflows in the PNG decoding module of GStreamer CVE-2009-1932. if !definedfunc"nasllevel" || nasllevel = 70000 && nasllevel = 70200 && nasllevel = 80000 && nasllevel 80502 exit0; C Tenable Network Security, Inc. The descriptive text and package checks...
openSUSE Security Update : ghostscript-devel (ghostscript-devel-592)
Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files CVE-2009-0583, CVE-2009-0584. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
openSUSE Security Update : freetype2 (freetype2-794)
Freetype was updated to fix some integer overflows that can be exploited remotely in conjunction with programs like a web-browser. CVE-2009-0946 Thanks to Tavis Ormandy who found the bugs. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
openSUSE Security Update : gstreamer-0_10-plugins-good (gstreamer-0_10-plugins-good-989)
Specially crafted files could cause integer overflows in the PNG decoding module of GStreamer CVE-2009-1932. if !definedfunc"nasllevel" || nasllevel = 70000 && nasllevel = 70200 && nasllevel = 80000 && nasllevel 80502 exit0; C Tenable Network Security, Inc. The descriptive text and package checks...