Test ID:	1.3.6.1.4.1.25623.1.0.57539
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-1198-1)
Summary:	The remote host is missing an update for the Debian 'python2.3' package(s) announced via the DSA-1198-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'python2.3' package(s) announced via the DSA-1198-1 advisory. Vulnerability Insight: Benjamin C. Wiley Sittler discovered that the repr() of the Python interpreter allocates insufficient memory when parsing UCS-4 Unicode strings, which might lead to execution of arbitrary code through a buffer overflow. For the stable distribution (sarge) this problem has been fixed in version 2.3.5-3sarge2. Due to build problems this update lacks fixed packages for the Alpha and Sparc architectures. Once they are sorted out, fixed binaries will be released. For the unstable distribution (sid) this problem has been fixed in version 2.3.5-16. We recommend that you upgrade your Python 2.3 packages. Affected Software/OS: 'python2.3' package(s) on Debian 3.1. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4980 BugTraq ID: 20376 http://www.securityfocus.com/bid/20376 Bugtraq: 20061011 rPSA-2006-0187-1 idle python (Google Search) http://www.securityfocus.com/archive/1/448244/100/100/threaded Bugtraq: 20070110 VMware ESX server security updates (Google Search) http://www.securityfocus.com/archive/1/456546/100/200/threaded Debian Security Information: DSA-1197 (Google Search) http://www.debian.org/security/2006/dsa-1197 Debian Security Information: DSA-1198 (Google Search) http://www.debian.org/security/2006/dsa-1198 http://security.gentoo.org/glsa/glsa-200610-07.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:181 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789 http://www.redhat.com/support/errata/RHSA-2006-0713.html http://www.redhat.com/support/errata/RHSA-2008-0629.html http://securitytracker.com/id?1017019 http://secunia.com/advisories/22276 http://secunia.com/advisories/22297 http://secunia.com/advisories/22303 http://secunia.com/advisories/22357 http://secunia.com/advisories/22358 http://secunia.com/advisories/22379 http://secunia.com/advisories/22448 http://secunia.com/advisories/22487 http://secunia.com/advisories/22512 http://secunia.com/advisories/22531 http://secunia.com/advisories/22639 http://secunia.com/advisories/23680 http://secunia.com/advisories/31492 SGI Security Advisory: 20061001-01-P ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc SuSE Security Announcement: SUSE-SR:2006:025 (Google Search) http://www.novell.com/linux/security/advisories/2006_25_sr.html http://www.ubuntu.com/usn/usn-359-1 http://www.vupen.com/english/advisories/2006/3940 http://www.vupen.com/english/advisories/2006/5131 XForce ISS Database: python-repr-bo(29408) https://exchange.xforce.ibmcloud.com/vulnerabilities/29408
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.