GHSA-83PF-V6QQ-PWMR Fickling has a detection bypass via stdlib network-protocol constructors

Our assessment imtplib, imaplib, ftplib, poplib, telnetlib, and nntplib were added to the list of unsafe imports https://github.com/trailofbits/fickling/commit/6d20564d23acf14b42ec883908aed159be7b9ade. The UnusedVariables heuristic works as expected. Original report Summary Fickling's checksafety...

K53192206: Python and Jython vulnerability CVE-2013-1752

Security Advisory Description REJECT Various versions of Python do not properly restrict readline calls, which allows remote attackers to cause a denial of service memory consumption via a long string, related to 1 httplib - fixed in 2.7.4, 2.6.9, and 3.3.3; 2 ftplib - fixed in 2.7.6, 2.6.9, 3.3....

SUSE CVE-2013-1752

Various versions of Python do not properly restrict readline calls, which allows remote attackers to cause a denial of service memory consumption via a long string, related to 1 httplib - fixed in 2.7.4, 2.6.9, and 3.3.3; 2 ftplib - fixed in 2.7.6, 2.6.9, 3.3.3; 3 imaplib - not yet fixed in 2.7.x...

CVE-2013-1752

CVE-2013-1752 is a denial-of-service in Python readline usage within several network protocol modules (httplib, ftplib, imaplib, nntplib, poplib, smtplib). Remote attackers could exhaust memory via a long readline input. Connected advisories confirm fixes in various module releases: httplib fixed...

F5 Networks BIG-IP : Python and Jython vulnerability (K53192206)

REJECT Various versions of Python do not properly restrict readline calls, which allows remote attackers to cause a denial of service memory consumption via a long string, related to 1 httplib - fixed in 2.7.4, 2.6.9, and 3.3.3; 2 ftplib - fixed in 2.7.6, 2.6.9, 3.3.3; 3 imaplib - not yet fixed i...

VMware ESXi Multiple Vulnerabilities (VMSA-2014-0012)

The remote VMware ESXi host is affected by multiple vulnerabilities : - Multiple denial of service vulnerabilities exist in Python function readstatus in library httplib and in function readline in libraries smtplib, ftplib, nntplib, imaplib, and poplib. A remote attacker can exploit these...

Fedora 20 : python-2.7.5-16.fc20 (2015-6010)

Security fix for CVE-2013-1752 multiple unbound readline DoS flaws in python stdlib following fixes which all relates to this CVE are in this patch : - ftplib: Limit amount of data read by limiting the call to readline. 16038 - imaplib: limit line length in imaplib readline calls. 16039 - nntplib...

PT-2013-3377 · Python +4 · Python +4

Name of the Vulnerable Software and Affected Versions: Python versions prior to 2.6.9 Python versions prior to 2.7.4 Python versions prior to 2.7.6 Python versions prior to 3.3.3 Description: The issue is related to various Python modules, including httplib, ftplib, imaplib, nntplib, poplib, and...

CVE-2013-1752

Rejected reason: Various versions of Python do not properly restrict readline calls, which allows remote attackers to cause a denial of service memory consumption via a long string, related to 1 httplib - fixed in 2.7.4, 2.6.9, and 3.3.3; 2 ftplib - fixed in 2.7.6, 2.6.9, 3.3.3; 3 imaplib - not y...