Veracode Vulnerability DatabaseVERACODE:24360Arbitrary Code Execution
0.007 Low
EPSS
Percentile
79.8%
python is vulnerable to arbitrary code execution. Multiple flaws were found in the Python audioop module. Supplying certain inputs could cause the audioop module to crash or, possibly, execute arbitrary code.
References
bugs.python.org/issue8674
lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html
lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
secunia.com/advisories/39937
secunia.com/advisories/40194
secunia.com/advisories/42888
secunia.com/advisories/43068
secunia.com/advisories/50858
secunia.com/advisories/51024
secunia.com/advisories/51040
secunia.com/advisories/51087
support.apple.com/kb/HT5002
svn.python.org/view?rev=81045&view=rev
svn.python.org/view?rev=81079&view=rev
www.redhat.com/support/errata/RHSA-2011-0027.html
www.securityfocus.com/bid/40370
www.ubuntu.com/usn/USN-1596-1
www.ubuntu.com/usn/USN-1613-1
www.ubuntu.com/usn/USN-1613-2
www.ubuntu.com/usn/USN-1616-1
www.vupen.com/english/advisories/2010/1448
www.vupen.com/english/advisories/2011/0122
www.vupen.com/english/advisories/2011/0212
access.redhat.com/errata/RHSA-2011:0027
access.redhat.com/errata/RHSA-2011:0491
access.redhat.com/security/cve/CVE-2010-1634
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=590690
Related
