ELSA-2009-1178

ELSA-2009-1178 - python security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2009-07-27

Description

[2.2.3-6.11]
- Fix all of the low priority security bugs:
- Resolves: rhbz#486114
- Multiple integer overflows in python core (CVE-2008-2315)
- Resolves: 455008
- PyString_FromStringAndSize does not check for negative size values (CVE-2008-1887)
- Resolves: 443810
- Multiple integer overflows discovered by Google (CVE-2008-3143)
- Resolves: 455013
- Multiple buffer overflows in unicode processing (CVE-2008-3142)
- Resolves: 454990
- Potential integer underflow and overflow in the PyOS_vsnprintf C API function (CVE-2008-3144)
- Resolves: 455018
- imageop module multiple integer overflows (CVE-2008-4864)
- Resolves: 469656
- stringobject, unicodeobject integer overflows (CVE-2008-5031)
- Resolves: 470915
- imageop module integer overflows (CVE-2008-1679)
- CVE-2008-1679 patch is part of python-2.2.3-CVE-2008-4864-imageop-1.patch
- Resolves: 441306

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 3 (i386)	python-2.2.3-6.11.src.rpm	ab18439645deb5e6a434c00399b805a6	-
	python-2.2.3-6.11.i386.rpm	7b805b5cc408c1d17dcf08f13fe89f26	-
	python-devel-2.2.3-6.11.i386.rpm	d342d7d7e7228f39e9f8c0c80445a66d	-
	python-tools-2.2.3-6.11.i386.rpm	cc9577b1758e7c19e82f56a19fc4953d	-
	tkinter-2.2.3-6.11.i386.rpm	3bf2a5baaf3e504be6a213f4a17b9e1c	-
Oracle Linux 3 (x86_64)	python-2.2.3-6.11.src.rpm	ab18439645deb5e6a434c00399b805a6	-
	python-2.2.3-6.11.x86_64.rpm	93dd7781e78766fa65519159016cc7b8	-
	python-devel-2.2.3-6.11.x86_64.rpm	c439edf1b3928fb8aa7ab8bd1c4dd3a1	-
	python-tools-2.2.3-6.11.x86_64.rpm	be1d4d2c799a32484a2c7d4810c16241	-
	tkinter-2.2.3-6.11.x86_64.rpm	3c1abf730d976357e55ebf65836db2f5	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team