MDVSA-2014:041 -- Mandriva pythonID: oval:org.secpod.oval:def:1300281 | Date: (C)2014-03-05 (M)2024-04-17 |
Class: PATCH | Family: unix |
A vulnerability was reported in Python's socket module, due to a boundary error within the sock_recvfrom_into function, which could be exploited to cause a buffer overflow. This could be used to crash a Python application that uses the socket.recvfrom_info function or, possibly, execute arbitrary code with the permissions of the user running vulnerable Python code . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Enterprise Server 5.2 |