Lucene search
GoogleOSV:CVE-2014-4616HistoryAug 24, 2017 - 8:29 p.m.
CVE-2014-4616
2017-08-2420:29:00
Google
osv.dev
9
0.003 Low
EPSS
Percentile
70.0%
Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.
References
bugs.python.org/issue21529
lists.opensuse.org/opensuse-updates/2014-07/msg00015.html
openwall.com/lists/oss-security/2014/06/24/7
rhn.redhat.com/errata/RHSA-2015-1064.html
www.securityfocus.com/bid/68119
bugs.debian.org/cgi-bin/bugreport.cgi?bug=752395
bugzilla.redhat.com/show_bug.cgi?id=1112285
hackerone.com/reports/12297
security.gentoo.org/glsa/201503-10
Related
nessus
nessus
Amazon Linux AMI : python-simplejson (ALAS-2014-374)
2014-10-12 00:00:00
Fedora 20 : python-2.7.5-13.fc20 (2014-7800)
2014-07-01 00:00:00
openSUSE Security Update : python / python3 (openSUSE-SU-2014:0890-1)
2014-07-14 00:00:00
github
github
simplejson before 2.6.1 vulnerable to array index error
2022-05-14 02:05:09
openvas
openvas
Python < 2.7.7, 3.2.x < 3.2.6, 3.3.x < 3.3.6, 3.4.x < 3.4.1 JSONDecoder.raw_decode (bpo-21529) - Linux
2021-11-01 00:00:00
Fedora Update for python FEDORA-2014-7800
2014-07-01 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-380)
2015-09-08 00:00:00
cvelist
cvelist
CVE-2014-4616
2017-08-24 20:00:00
amazon
amazon
Medium: python27
2014-07-23 13:53:00
Low: python-simplejson
2014-07-09 16:51:00
hackerone
hackerone
Internet Bug Bounty: Python vulnerability: reading arbitrary process memory
2014-05-16 23:14:13
debiancve
debiancve
CVE-2014-4616
2017-08-24 20:29:00
ubuntucve
ubuntucve
CVE-2014-4616
2014-06-26 00:00:00
nvd
nvd
CVE-2014-4616
2017-08-24 20:29:00
osv
osv
JSONDecoder.raw_decode
2017-08-24 20:00:00
simplejson before 2.6.1 vulnerable to array index error
2022-05-14 02:05:09
alpinelinux
alpinelinux
CVE-2014-4616
2017-08-24 20:29:00
cve
cve
CVE-2014-4616
2017-08-24 20:29:00
fedora
fedora
[SECURITY] Fedora 20 Update: python-2.7.5-13.fc20
2014-06-30 10:31:50
[SECURITY] Fedora 21 Update: python3-3.4.1-16.fc21
2014-11-10 06:36:31
[SECURITY] Fedora 20 Update: python3-3.3.2-18.fc20
2014-11-09 15:45:22
prion
prion
Code injection
2017-08-24 20:29:00
mageia
mageia
Updated python-simplejson package fixes security vulnerability
2014-07-09 02:38:10
Updated python & python3 packages fix two vulnerabilities
2014-07-09 02:35:18
ibm
ibm
securityvulns
securityvulns
python security vulnerabilities
2014-07-14 00:00:00
ubuntu
ubuntu
Python vulnerabilities
2015-06-25 00:00:00
oraclelinux
oraclelinux
python security, bug fix, and enhancement update
2015-11-23 00:00:00
python27 security, bug fix, and enhancement update
2016-02-04 00:00:00
veracode
veracode
Sensitive Information Leakage
2019-05-02 05:39:25
Improper Input Validation
2019-05-02 05:39:24
Improper Input Validation
2019-05-02 05:39:24
redhat
redhat
(RHSA-2015:2101) Moderate: python security, bug fix, and enhancement update
2015-11-19 13:41:01
centos
centos
python, tkinter security update
2015-11-30 19:48:49
gentoo
gentoo
Python: Multiple vulnerabilities
2015-03-18 00:00:00