|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu Update for python-crypto USN-3199-1|
|Summary:||The remote host is missing an update for the 'python-crypto'; package(s) announced via the USN-3199-1 advisory.|
The remote host is missing an update for the 'python-crypto'
package(s) announced via the USN-3199-1 advisory.
It was discovered that the ALGnew function in block_templace.c in the Python
Cryptography Toolkit contained a heap-based buffer overflow vulnerability.
A remote attacker could use this flaw to execute arbitrary code by using
a crafted initialization vector parameter.
python-crypto on Ubuntu 16.10,
Ubuntu 16.04 LTS,
Ubuntu 14.04 LTS.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2013-7459|
BugTraq ID: 95122
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 72306 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.