CVE-2010-1634
MEDIUM severity · CVSS 5 · Integer overflow
5CVSS MEDIUM
Summary
Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-3143.5.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impactNone
Integrity impactNone
Availability impact—
Exploit probability (EPSS)4%
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected products we track (5)
Recommendation
Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.
Official patch: http://bugs.python.org/issue8674 ↗
Additional information
- NVD record
- http://bugs.python.org/issue8674Patch
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.htmlAdvisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlAdvisory
- http://secunia.com/advisories/39937
- http://secunia.com/advisories/40194
- http://secunia.com/advisories/42888