Lucene search
Ubuntu.comUB:CVE-2009-4134HistoryMay 27, 2010 - 12:00 a.m.
CVE-2009-4134
2010-05-2700:00:00
ubuntu.com
ubuntu.com
17
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.041 Low
EPSS
Percentile
92.0%
Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers
to cause a denial of service (application crash) via a large ZSIZE value in
a black-and-white (aka B/W) RGB image that triggers an invalid pointer
dereference.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | per upstream, python2.6 not affected fix for CVE-2007-4965 also fixed the rgbimg module. This CVE was assigned after the fact. |
Related
fedora
fedora
[SECURITY] Fedora 7 Update: python-2.5-14.fc7
2007-10-29 19:03:15
nessus
nessus
openSUSE 10 Security Update : python (python-4900)
2008-02-01 00:00:00
GLSA-200711-07 : Python: User-assisted execution of arbitrary code
2007-11-08 00:00:00
SuSE 10 Security Update : Python (ZYPP Patch Number 4902)
2008-02-01 00:00:00
gentoo
gentoo
Python: User-assisted execution of arbitrary code
2007-11-07 00:00:00
Python: Multiple integer overflows
2008-07-01 00:00:00
openvas
openvas
Fedora Update for python FEDORA-2007-2663
2009-02-27 00:00:00
SLES10: Security update for Python
2009-10-13 00:00:00
SLES9: Security update for Python
2009-10-10 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:35:07
Arbitrary Code Execution
2020-04-10 00:53:08
cve
cve
prion
prion
Integer overflow
2007-09-18 22:17:00
Buffer overflow
2010-05-27 19:30:00
Integer overflow
2008-04-22 04:41:00
ubuntucve
ubuntucve
debiancve
debiancve
CVE-2009-4134
2010-05-27 19:30:00
ubuntu
ubuntu
Python vulnerabilities
2008-03-11 00:00:00
redhat
redhat
(RHSA-2007:1076) Moderate: python security update
2007-12-10 00:00:00
(RHSA-2011:0260) Low: python security and bug fix update
2011-02-16 00:00:00
(RHSA-2011:0027) Low: python security, bug fix, and enhancement update
2011-01-13 00:00:00
centos
centos
python, tkinter security update
2007-12-10 19:37:17
python, tkinter security update
2009-07-29 17:31:50
oraclelinux
oraclelinux
Moderate: python security update
2007-12-10 00:00:00
python security and bug fix update
2011-02-23 00:00:00
python security, bug fix, and enhancement update
2011-01-20 00:00:00
vmware
vmware
Updated aacraid driver and Samba and Python service console updates
2008-02-04 00:00:00
Updated aacraid driver and Samba and Python service console updates
2008-02-04 00:00:00
osv
osv
python2.4 - several vulnerabilities
2008-04-19 00:00:00
python2.5 - several vulnerabilities
2008-07-27 00:00:00
debian
debian
[SECURITY] [DSA 1620-1] New python2.5 packages fix several vulnerabilities
2008-07-27 13:13:22
[SECURITY] [DSA 1551-1] New python2.4 packages fix several vulnerabilities
2008-04-19 16:45:03
securityvulns
securityvulns
About the security content of Mac OS X v10.6.5 and Security Update 2010-007
2010-11-18 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.041 Low
EPSS
Percentile
92.0%
Related for UB:CVE-2009-4134