Debian Python2.7 vulnerabilities

CVE-2012-0845 [MEDIUM] CVE-2012-0845: python2.7 - SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before... SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an XML-RPC POST request that contains a smaller amount of data than specified by the Content-Length header. Scope: local bullseye: resolved (fix

CVE-2012-1150 [MEDIUM] CVE-2012-1150: python2.7 - Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.... Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table. Scope: local bullseye: resolved (fixed

CVE-2011-1521 [MEDIUM] CVE-2011-1521: python2.7 - The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 p... The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. Scope:

CVE-2011-3389 [MEDIUM] CVE-2011-3389: asterisk - The SSL protocol, as used in certain configurations in Microsoft Windows and Mic... The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS s

CVE-2011-4944 [LOW] CVE-2011-4944: python2.7 - Python 2.6 through 3.2 creates ~/.pypirc with world-readable permissions before ... Python 2.6 through 3.2 creates ~/.pypirc with world-readable permissions before changing them after data has been written, which introduces a race condition that allows local users to obtain a username and password by reading this file. Scope: local bullseye: resolved (fixed in 2.7.3~rc2-2)

CVE-2011-4940 [LOW] CVE-2011-4940: python2.7 - The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Py... The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset parameter in the Content-Type HTTP header, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks against Internet Explorer 7 via UTF-7 encoding. Scope: local bul

CVE-2010-1449 [HIGH] CVE-2010-1449: python2.7 - Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows rem... Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12. Scope: local bullseye: resolved

CVE-2010-2089 [MEDIUM] CVE-2010-2089: python2.7 - The audioop module in Python 2.7 and 3.2 does not verify the relationships betwe... The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010

CVE-2010-1634 [HIGH] CVE-2010-1634: python2.7 - Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7... Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow. NOTE: this vulnerability exists because of an incor

CVE-2010-3492 [MEDIUM] CVE-2010-3492: python2.7 - The asyncore module in Python before 3.2 does not properly handle unsuccessful c... The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via ne

CVE-2010-1450 [HIGH] CVE-2010-1450: python2.7 - Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 ... Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the (1) longimagedata or (2) expandrow function. Scope: local bullseye: resolved

CVE-2009-4134 [MEDIUM] CVE-2009-4134: python2.7 - Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to c... Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a large ZSIZE value in a black-and-white (aka B/W) RGB image that triggers an invalid pointer dereference. Scope: local bullseye: resolved