Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-729-1
HistoryMar 05, 2009 - 12:00 a.m.

Python Crypto vulnerability

2009-03-0500:00:00
ubuntu.com
32

7.3 High

AI Score

Confidence

Low

0.321 Low

EPSS

Percentile

97.0%

JSON

Releases

  • Ubuntu 8.10
  • Ubuntu 8.04
  • Ubuntu 7.10
  • Ubuntu 6.06

Packages

  • python-crypto -

Details

Mike Wiacek discovered that the ARC2 implementation in Python Crypto
did not correctly check the key length. If a user or automated system
were tricked into processing a malicious ARC2 stream, a remote attacker
could execute arbitrary code or crash the application using Python Crypto,
leading to a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu8.10noarchpython-crypto<Β 2.0.1+dfsg1-2.3ubuntu0.1UNKNOWN
Ubuntu8.10noarchpython-crypto-dbg<Β 2.0.1+dfsg1-2.3ubuntu0.1UNKNOWN
Ubuntu8.04noarchpython-crypto<Β 2.0.1+dfsg1-2.1ubuntu1.1UNKNOWN
Ubuntu8.04noarchpython-crypto-dbg<Β 2.0.1+dfsg1-2.1ubuntu1.1UNKNOWN
Ubuntu7.10noarchpython-crypto<Β 2.0.1+dfsg1-2ubuntu1.1UNKNOWN
Ubuntu7.10noarchpython-crypto-dbg<Β 2.0.1+dfsg1-2ubuntu1.1UNKNOWN
Ubuntu6.06noarchpython2.4-crypto<Β 2.0.1+dfsg1-1ubuntu1.1UNKNOWN
Ubuntu6.06noarchpython-crypto<Β 2.0.1+dfsg1-1ubuntu1.1UNKNOWN

Related

openvas 21
nessus 8
gentoo 1
securityvulns 2
cve 1
prion 1
seebug 1
cvelist 1
ubuntucve 1
debian 1
debiancve 1
openvas
openvas
Mandrake Security Advisory MDVSA-2009:050 (python-pycrypto)
2009-03-02 00:00:00
Mandrake Security Advisory MDVSA-2009:050 (python-pycrypto)
2009-03-02 00:00:00
Mandrake Security Advisory MDVSA-2009:050-1 (python-pycrypto)
2009-03-02 00:00:00
nessus
nessus
openSUSE Security Update : python-crypto (python-crypto-589)
2009-07-21 00:00:00
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : python-crypto vulnerability (USN-729-1)
2009-04-23 00:00:00
GLSA-200903-11 : PyCrypto: Execution of arbitrary code
2009-03-10 00:00:00
gentoo
gentoo
PyCrypto: Execution of arbitrary code
2009-03-09 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:050-1 ] python-pycrypto
2009-02-25 00:00:00
PyCrypto python module DoS
2009-02-25 00:00:00
cve
cve
CVE-2009-0544
2009-02-12 17:30:00
prion
prion
Buffer overflow
2009-02-12 17:30:00
seebug
seebug
PyCrypto ARC2ζ¨‘ε—ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2009-02-19 00:00:00
cvelist
cvelist
CVE-2009-0544
2009-02-12 17:00:00
ubuntucve
ubuntucve
CVE-2009-0544
2009-02-12 00:00:00
debian
debian
[SECURITY] [DSA 1726-1] New python-crypto packages fix denial of service
2009-02-25 20:32:24
debiancve
debiancve
CVE-2009-0544
2009-02-12 17:30:00

7.3 High

AI Score

Confidence

Low

0.321 Low

EPSS

Percentile

97.0%

JSON
Related for USN-729-1
openvas21nessus8gentoo1securityvulns2cve1prion1seebug1cvelist1ubuntucve1debian1debiancve1