Stay Connected:

ELSA-2009-1176

ELSA-2009-1176 - python security update

Type:SECURITY
Impact:MODERATE
Release Date:2009-07-27

Description



[2.4.3-24.el5_3.6]
- Fix all of the low priority security bugs:
- Resolves: rhbz#486351
- Multiple integer overflows in python core (CVE-2008-2315)
- Resolves: 455008
- PyString_FromStringAndSize does not check for negative size values (CVE-2008-1887)
- Resolves: 443810
- Multiple integer overflows discovered by Google (CVE-2008-3143)
- Resolves: 455013
- Multiple buffer overflows in unicode processing (CVE-2008-3142)
- Resolves: 454990
- Potential integer underflow and overflow in the PyOS_vsnprintf C API function (CVE-2008-3144)
- Resolves: 455018
- imageop module multiple integer overflows (CVE-2008-4864)
- Resolves: 469656
- stringobject, unicodeobject integer overflows (CVE-2008-5031)
- Resolves: 470915
- integer signedness error in the zlib extension module (CVE-2008-1721)
- Resolves: 442005
- off-by-one locale.strxfrm() (possible memory disclosure) (CVE-2007-2052)
- Resolves: 235093
- imageop module heap corruption (CVE-2007-4965)
- Resolves: 295971


Related CVEs


CVE-2007-4965
CVE-2008-1721
CVE-2008-2315
CVE-2008-3143
CVE-2008-5031
CVE-2008-4864
CVE-2007-2052
CVE-2008-1887
CVE-2008-3142
CVE-2008-3144

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 5 (i386) python-2.4.3-24.el5_3.6.src.rpmd23a52ec537314f67cbf7000e2c01c98121d5b3a1b786cf31e74092021223354ELSA-2012-0745el5_u3_i386_patch
python-2.4.3-24.el5_3.6.i386.rpme6cb6dc47e6645085dbb3e16128fbcede0a18697b5c0a8edb26d285870a573b7ELSA-2012-0745el5_u3_i386_patch
python-devel-2.4.3-24.el5_3.6.i386.rpm76e6ebf961d2754ff63c045847bff8b31a85f54f00773322d8959a1b2f4a07a0ELSA-2012-0745el5_u3_i386_patch
python-tools-2.4.3-24.el5_3.6.i386.rpm09bde1352e61aae5d28efc400eda141b7da683b0edb37da0fe28f9a5e7c17cffELSA-2012-0745el5_u3_i386_patch
tkinter-2.4.3-24.el5_3.6.i386.rpmb2dcafa7756b006a534f117ca146585b1c5cd40738f0a811e3e6518b806ae0d6ELSA-2012-0745el5_u3_i386_patch
Oracle Linux 5 (x86_64) python-2.4.3-24.el5_3.6.src.rpmd23a52ec537314f67cbf7000e2c01c98121d5b3a1b786cf31e74092021223354ELSA-2012-0745el5_u3_x86_64_patch
python-2.4.3-24.el5_3.6.x86_64.rpmc5bdd6fd79a1568dd9e7a55bdb4b25cf655f72b1c6e908fb9c50fed337514b57ELSA-2012-0745el5_u3_x86_64_patch
python-devel-2.4.3-24.el5_3.6.i386.rpm76e6ebf961d2754ff63c045847bff8b31a85f54f00773322d8959a1b2f4a07a0ELSA-2012-0745el5_u3_x86_64_patch
python-devel-2.4.3-24.el5_3.6.x86_64.rpm270192af55e0309274ab7aa1a48f15cd75e7450bb9d2353dfb0822d94303a46aELSA-2012-0745el5_u3_x86_64_patch
python-tools-2.4.3-24.el5_3.6.x86_64.rpme39cdf7a1f61fe3037979e6a906997062361f529f0059246e1d25569dd49e092ELSA-2012-0745el5_u3_x86_64_patch
tkinter-2.4.3-24.el5_3.6.x86_64.rpm32a2788d04071ea00c7874f45bede23eee14d71b89d8a940a6f3ed3cc4b3a851ELSA-2012-0745el5_u3_x86_64_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights