PT-2010-1325 · Python+1 · Python+1

Marc Schoenefeld

·

Published

2010-05-27

·

Updated

2020-02-18

·

CVE-2009-4134

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions Python version 2.5
Description The issue is related to a buffer underflow in the rgbimg module, which can be triggered by a large ZSIZE value in a black-and-white RGB image. This can cause an invalid pointer dereference, leading to a denial of service in the form of an application crash.
Recommendations For Python version 2.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2009-4134
PSF-2010-1
RHSA-2011:0027
RHSA-2011:0260
RHSA-2011_0027
RHSA-2011_0260

Affected Products

Python
Red Hat