CVE-2010-1634

Name of the Vulnerable Software and Affected Versions Python versions 2.6 through 3.2

Description The issue is caused by multiple integer overflows in the audioop module, specifically in the audioop.c file. This allows context-dependent attackers to cause a denial of service, resulting in an application crash, by providing a large fragment. For example, calling audioop.lin2lin with a long string in the first argument can lead to a buffer overflow. This vulnerability exists due to an incorrect fix for a previous issue.

Recommendations For Python versions 2.6 through 3.2, consider applying a patch or fix to address the integer overflows in the audioop module. As a temporary workaround, restrict the use of the audioop.lin2lin function with large input strings to minimize the risk of a denial of service.