Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Debian Local Security Checks
Title:Debian Security Advisory DSA 1551-1 (python2.4)
The remote host is missing an update to python2.4
announced via advisory DSA 1551-1.

Several vulnerabilities have been discovered in the interpreter for the
Python language. The Common Vulnerabilities and Exposures project identifies
the following problems:


Piotr Engelking discovered that the strxfrm() function of the locale
module miscalculates the length of an internal buffer, which may
result in a minor information disclosure.


It was discovered that several integer overflows in the imageop
module may lead to the execution of arbitrary code, if a user is
tricked into processing malformed images. This issue is also
tracked as CVE-2008-1679 due to an initially incomplete patch.


Justin Ferguson discovered that a buffer overflow in the zlib
module may lead to the execution of arbitrary code.


Justin Ferguson discovered that insufficient input validation in
PyString_FromStringAndSize() may lead to the execution of arbitrary

For the stable distribution (etch), these problems have been fixed in
version 2.4.4-3+etch1.

For the unstable distribution (sid), these problems have been fixed in
version 2.4.5-2.

We recommend that you upgrade your python2.4 packages.


CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2007-2052
BugTraq ID: 23887
Bugtraq: 20070521 FLEA-2007-0019-1: python (Google Search)
Bugtraq: 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates (Google Search)
Bugtraq: 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components (Google Search)
Debian Security Information: DSA-1551 (Google Search)
Debian Security Information: DSA-1620 (Google Search)
SuSE Security Announcement: SUSE-SR:2007:013 (Google Search)
XForce ISS Database: python-localemodule-information-disclosure(34060)
Common Vulnerability Exposure (CVE) ID: CVE-2007-4965
BugTraq ID: 25696
Bugtraq: 20080212 FLEA-2008-0002-1 python (Google Search)
Cert/CC Advisory: TA07-352A
SuSE Security Announcement: SUSE-SR:2008:003 (Google Search)
XForce ISS Database: python-imageop-bo(36653)
Common Vulnerability Exposure (CVE) ID: CVE-2008-1679
SuSE Security Announcement: SUSE-SR:2008:017 (Google Search)
XForce ISS Database: python-imageopc-bo(41958)
Common Vulnerability Exposure (CVE) ID: CVE-2008-1721
BugTraq ID: 28715
Bugtraq: 20080409 IOActive Security Advisory: Buffer overflow in Python zlib extension module (Google Search)
XForce ISS Database: zlib-pystringfromstringandsize-bo(41748)
Common Vulnerability Exposure (CVE) ID: CVE-2008-1887
BugTraq ID: 28749
Bugtraq: 20080411 IOActive Security Advisory: Incorrect input validation in PyString_FromStringAndSize() leads to multiple buffer overflows (Google Search)
Bugtraq: 20090824 rPSA-2009-0122-1 idle python (Google Search)
XForce ISS Database: python-pystringfromstringandsize-bo(41944)
CopyrightCopyright (c) 2008 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.