Lucene search
RootSSV:60623HistoryFeb 03, 2013 - 12:00 a.m.
Python 'stringobject.c'多个远程缓冲区溢出漏洞
2013-02-0300:00:00
Root
www.seebug.org
19
0.003 Low
EPSS
Percentile
68.1%
Bugtraq ID:28749
CVE ID: CVE-2008-1887
Python是一款开放源代码的脚本编程语言。
Python存在缓冲区溢出,允许上下文独立的攻击者向 PyString_FromStringAndSiz函数提交负大小的值触发。当assert()禁用时会分配过小的内存而触发缓冲区溢出。
0
Python 2.5.2及之前版本
厂商解决方案
用户可参考如下厂商提供的安全公告获得补丁信息:
http://bugs.python.org/issue2587
Related
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:35:08
prion
prion
Buffer overflow
2008-04-18 17:05:00
cve
cve
CVE-2008-1887
2008-04-18 17:05:00
ubuntucve
ubuntucve
CVE-2008-1887
2008-04-18 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : python (MDVSA-2008:085)
2009-04-23 00:00:00
GLSA-200807-01 : Python: Multiple integer overflows
2008-07-08 00:00:00
Debian DSA-1551-1 : python2.4 - several vulnerabilities
2008-04-22 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200807-01 (python)
2008-09-24 00:00:00
Debian Security Advisory DSA 1620-1 (python2.5)
2008-08-15 00:00:00
Debian Security Advisory DSA 1551-1 (python2.4)
2008-04-21 00:00:00
gentoo
gentoo
Python: Multiple integer overflows
2008-07-01 00:00:00
osv
osv
python2.5 - several vulnerabilities
2008-07-27 00:00:00
python2.4 - several vulnerabilities
2008-04-19 00:00:00
debian
debian
[SECURITY] [DSA 1551-1] New python2.4 packages fix several vulnerabilities
2008-04-19 16:45:03
[SECURITY] [DSA 1620-1] New python2.5 packages fix several vulnerabilities
2008-07-27 13:13:22
oraclelinux
oraclelinux
python security update
2009-07-27 00:00:00
python security update
2009-07-27 00:00:00
python security update
2009-07-27 00:00:00
ubuntu
ubuntu
Python vulnerabilities
2008-08-01 00:00:00
centos
centos
python, tkinter security update
2009-07-27 15:25:44
python, tkinter security update
2009-07-29 17:31:50
redhat
redhat
(RHSA-2009:1178) Moderate: python security update
2009-07-27 00:00:00
(RHSA-2009:1177) Moderate: python security update
2009-07-27 00:00:00
(RHSA-2009:1176) Moderate: python security update
2009-07-27 00:00:00
