PT-2010-1325 · Python+1 · Python+1

Marc Schoenefeld

·

Publicado

2010-05-27

·

Atualizado

2020-02-18

·

CVE-2009-4134

CVSS v2.0

5.0

Média

VetorAV:N/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions Python version 2.5
Description The issue is related to a buffer underflow in the rgbimg module, which can be triggered by a large ZSIZE value in a black-and-white RGB image. This can cause an invalid pointer dereference, leading to a denial of service in the form of an application crash.
Recommendations For Python version 2.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2009-4134
PSF-2010-1
RHSA-2011:0027
RHSA-2011:0260
RHSA-2011_0027
RHSA-2011_0260

Produtos afetados

Python
Red Hat