CVE-2008-1679 - CVE Reference - Advisories

CVE Reference: CVE-2008-1679

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1679

Description: Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/41958 SAID Secunia Advisory: SA29889 Secunia Advisory: SA29955 Secunia Advisory: SA30872 MISC http://bugs.python.org/msg64682 GENTOO http://security.gentoo.org/glsa/glsa-200807-01.xml DEBIAN http://www.debian.org/security/2008/dsa-1551 CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0149 http://bugs.python.org/issue1179

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenBSD BIND Query Port DNS Cache Poisoning

2.	Linux Kernel LDT Buffer Size Handling Vulnerability

3.	Apple Safari Cross-Domain Cookie Injection Vulnerability

4.	Drupal Session Fixation Vulnerability

5.	Debian update for clamav

6.	Red Hat update for thunderbird

7.	dnsmasq Denial of Service and DNS Cache Poisoning

8.	IPCop update for perl

9.	Slackware update for dnsmasq

10.	Red Hat update for kernel