Updated python & python3 packages fix two vulnerabilities

Updated python and python3 packages fix security vulnerabilities: Python 2 and 3 are susceptible to arbitrary process memory reading by a user or adversary due to a bug in the json module caused by insufficient bounds checking. The bug is caused by allowing the user to supply a negative value tha...

openSUSE Security Update : python3 (openSUSE-SU-2013:1439-1)

This python update includes a SSL certificates fix. - handle NULL bytes in certain fields of SSL certificates CVE-2013-4238, bnc834601, CVE-2013-4238py33.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : python3 (openSUSE-SU-2014:0596-1)

This python update fixes the following security issue : - bnc871152: Fixed race condition with umask when creating directories with os.mkdirs CVE-2014-2667. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : python-pymongo / python3-pymongo (openSUSE-SU-2013:1064-1)

This update of pymongo fixes a NULL pointer issue. - Add Fix-null-pointer-when-decoding-invalid-DBRef.patch - Fixed user-triggerable NULL pointer dereference due to utter plebbery CVE-2013-2132, bnc822798 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...

openSUSE Security Update : python3 (openSUSE-SU-2012:0861-1)

python3 was fixed for : - Fix bnc758993 - CVE-2012-2135: python3 utf-16 decoder unicodedecodecallerrorhandler alignedend is not updated %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : python3 (openSUSE-SU-2013:1437-1)

This python update includes a SSL certificates fix and other minor changes. - disable testio on ppc as it hangs - handle NULL bytes in certain fields of SSL certificates CVE-2013-4238, bnc834601, CVE-2013-4238-py32.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...

openSUSE Security Update : python3 (openSUSE-SU-2014:0597-1)

This python update fixes the following security and non-security issues : - bnc869222: Fixed DoS when opening malicious archives CVE-2013-7338. - bnc863741: Fixed buffer overflow in socket.recvfrominto CVE-2014-1912. - bnc871152: Fixed race condition with umask when creating directories with...

Updated python3 package fixes security vulnerabilities

ZipExtFile.read goes into 100% CPU infinite loop on maliciously binary edited zips CVE-2013-7338...

MGASA-2014-0140 Updated python3 package fixes security vulnerabilities

ZipExtFile.read goes into 100% CPU infinite loop on maliciously binary edited zips CVE-2013-7338...

Python - 'socket.recvfrom_into()' Remote Buffer Overflow

!/usr/bin/env python ''' Exploit Title: python socket.recvfrominto remote buffer overflow Date: 21/02/2014 Exploit Author: @sha0coder Vendor Homepage: python.org Version: python2.7 and python3 Tested on: linux 32bit + python2.7 CVE : CVE-2014-1912 socket.recvfrominto remote buffer overflow Proof ...

Updated python & python3 packages fix multiple vulnerabilities

Updated python and python3 packages fix security vulnerabilities: A vulnerability was reported in Python's socket module, due to a boundary error within the sockrecvfrominto function, which could be exploited to cause a buffer overflow. This could be used to crash a Python application that uses t...

MGASA-2014-0085 Updated python & python3 packages fix multiple vulnerabilities

Updated python and python3 packages fix security vulnerabilities: A vulnerability was reported in Python's socket module, due to a boundary error within the sockrecvfrominto function, which could be exploited to cause a buffer overflow. This could be used to crash a Python application that uses t...

Fedora Update for python3 FEDORA-2014-2418

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for python3 FEDORA-2014-2418

Check for the Version of python3 OpenVAS Vulnerability Test Fedora Update for python3 FEDORA-2014-2418 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora 20 : python3-3.3.2-9.fc20 (2014-2418)

Buffer overflow fix. See upstream issue: http://bugs.python.org/issue20246 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducin...

MGASA-2013-0376 Updated python3 and related packages fix security vulnerabilities and prevent an error

Changed behavior of ssl.matchhostname to follow RFC 6125 Also python-virtualenv has had incdir settings altered to avoid "include nested too deeply" error mga11283...

Updated python3 and related packages fix security vulnerabilities and prevent an error

Changed behavior of ssl.matchhostname to follow RFC 6125 Also python-virtualenv has had incdir settings altered to avoid "include nested too deeply" error mga11283...

Fedora 19 : python3-3.3.2-8.fc19 (2013-21418)

Fix for rhbz1023742 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

Fedora Update for python3 FEDORA-2013-21415

Check for the Version of python3 OpenVAS Vulnerability Test Fedora Update for python3 FEDORA-2013-21415 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for python3 FEDORA-2013-21418

Check for the Version of python3 OpenVAS Vulnerability Test Fedora Update for python3 FEDORA-2013-21418 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...