Internet Bug Bounty: Integer overflow in strop.expandtabs

This issue was originally disclosed directly to the Python Security Response Team Here's a bug in a string handling function which might be reachable in some "sandboxed python" environments, and maybe at a stretch remotely if someone were to offer "expanding-tabs-in-strings"-as-a-service... Bug:...

[SECURITY] [DSA 2880-1] python2.7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2880-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 17, 2014 http://www.debian.org/security/faq -...

DSA-2880-1 python2.7 - security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: python security, bug fix, and enhancement update

Updated python packages that fix one security issue, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2013:0630 Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

python security, bug fix, and enhancement update

python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...

python security and bug fix update

2.3.4-14.9 - rgbimg module integer overflows CVE-2010-1450 Resolves: rhbz650936 2.3.4-14.8 - Backport fix for socket.htons on s390x from 2.4 patch 37 - Resolves: rhbz513341 - Backport fixes for grp.getgrgid patch 38 and for pwd.getpwuid patch 39 - Resolves: rhbz497540 - Backport fixes to strptime...

python security update

2.4.3-24.el53.6 - Fix all of the low priority security bugs: - Resolves: rhbz486351 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...

openSUSE 10 Security Update : python (python-5491)

This update of python fixes several security vulnerabilities. CVE-2008-1679,CVE-2008-1887, CVE-2008-3143, CVE-2008-3142, CVE-2008-3144, CVE-2008-2315, CVE-2008-2316 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

CVE-2007-4965

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service application crash and possibly obtain sensitive information memory contents via crafted arguments to 1 the tovideo method, and unspecified other vectors...

RHEL 4 : python (RHSA-2005:108)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2005:108 advisory. Python is an interpreted, interactive, object-oriented programming language. An object traversal bug was found in the Python SimpleXMLRPCServer. This...

Important: Red Hat Security Advisory: python security update

Updated Python packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team Python is an interpreted, interactive, object-oriented programming language. An object...

Important: Red Hat Security Advisory: python security update

Updated Python packages that fix a security issue are now available for Red Hat Enterprise Linux 3. Python is an interpreted, interactive, object-oriented programming language. An object traversal bug was found in the Python SimpleXMLRPCServer. This bug could allow a remote untrusted user to do...

RHEL 3 : python (RHSA-2005:109)

Updated Python packages that fix a security issue are now available for Red Hat Enterprise Linux 3. Python is an interpreted, interactive, object-oriented programming language. An object traversal bug was found in the Python SimpleXMLRPCServer. This bug could allow a remote untrusted user to do...

[SECURITY] [DSA 666-1] New Python2.2 packages fix unauthorised XML-RPC internals access

-------------------------------------------------------------------------- Debian Security Advisory DSA 666-1 [email protected] http://www.debian.org/security/ Martin Schulze February 4th, 2005 http://www.debian.org/security/faq -...

Python Security Advisory PSF-2005-001 - SimpleXMLRPCServer.py

http://www.python.org/security/PSF-2005-001/ --------------------------------------------------------------------- Python Security Advisory Advisory ID: PSF-2005-001 Issue Date: February 3, 2005 Product: Python Versions: 2.2 all versions, 2.3 prior to 2.3.5, 2.4 CVE Names: CAN-2005-0089...

Low: Red Hat Security Advisory: python security update

An insecure use of a temporary file has been found in Python. Python is an interpreted, interactive, object-oriented programming language. Zack Weinberg discovered that os.execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names. This could allow local users t...