HPSBHF03685 rev. 2 - Intel® AMT and Intel® ISM September 2020 Security Updates

Potential Security Impact Escalation of Privilege Source: HP, HP Product Security Response Team PSRT Reported By: Intel® VULNERABILITY SUMMARY Intel® has informed HP of potential security vulnerabilities identified in the Intel® Active Management Technology AMT and Intel® Standard Manageability I...

Internet Bug Bounty: A reflected XSS in python/Lib/DocXMLRPCServer.py

I have report this issue to PSRT and it has been resolved now. Details about this issue is at https://bugs.python.org/issue38243 and https://vulners.com/cve/CVE-2019-16935 Impact It's the same with other xss...

EulerOS 2.0 SP1 : python (EulerOS-SA-2018-1078)

According to the version of the python packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also be vulnerable and ...

CVE-2018-1000030

Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also be vulnerable and it appears that Python 2.7.17 and prior may also be vulnerable however this has not been confirmed. The vulnerability lies when multiply threads are...

CVE-2018-1000030

Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also be vulnerable and it appears that Python 2.7.17 and prior may also be vulnerable however this has not been confirmed. The vulnerability lies when multiply threads are...

Internet Bug Bounty: use of uninitialized variables in operator.methodcaller

I described this vulnerability in detail in a mail to the PSRT. A copy of my email, plus the fix for this issue, can be found here: https://bugs.python.org/issue27783...

Internet Bug Bounty: Two vulnerabilities in the ssl module

I found two vulnerabilities in python's ssl module. The first is a PyXDECREF call on an object which isn't owned, leading to use-after-free and/or double free scenarios. The second vulnerability is an uninitialized variable use. I described both issues in detail in a mail to the PSRT. The mail an...

Internet Bug Bounty: Py_DECREF on a non-owned object in the _sre module

I described this vulnerability in detail in a mail to the PSRT. A copy of my email, plus the fix for this issue, can be found here: https://bugs.python.org/issue27774...

Internet Bug Bounty: stack buffer overflows in the curses module

I found two stack buffer overflows in the curses module. These vulnerabilities have been reported to the PSRT and were fixed here: https://hg.python.org/cpython/rev/d5f6bc45b376 https://hg.python.org/cpython/rev/85b35300f200 Below are copies of the mails I sent to the PSRT. They describe the...

Internet Bug Bounty: integer overflow in binascii.b2a_qp

I described this vulnerability in detail in a mail to the PSRT. A copy of my email, plus the fix for this issue, can be found here: https://bugs.python.org/issue27760...

Internet Bug Bounty: integer overflow in the _csv module's join_append_data function

I described this vulnerability in detail in a mail to the PSRT. A copy of my email, plus the fix for this issue, can be found here: https://bugs.python.org/issue27758...