Oval Definition:oval:org.mitre.oval:def:10804
Revision Date:2013-04-29Version:12
Title:Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.
Description:Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-4965
Platform(s):CentOS Linux 3
CentOS Linux 4
CentOS Linux 5
Oracle Linux 4
Oracle Linux 5
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • OS Section: RHEL3, CentOS3
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • python-devel is earlier than 0:2.2.3-6.8
  • OR tkinter is earlier than 0:2.2.3-6.8
  • OR python-tools is earlier than 0:2.2.3-6.8
  • OR python is earlier than 0:2.2.3-6.8
  • OR OS Section: RHEL4, CentOS4, Oracle Linux 4
  • RHEL4, CentOS4 or Oracle Linux 4
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • OR CentOS Linux 4.x
  • OR Oracle Linux 4.x
  • AND Configuration section
  • python-devel is earlier than 0:2.3.4-14.4.el4_6.1
  • OR tkinter is earlier than 0:2.3.4-14.4.el4_6.1
  • OR python-tools is earlier than 0:2.3.4-14.4.el4_6.1
  • OR python is earlier than 0:2.3.4-14.4.el4_6.1
  • OR python-docs is earlier than 0:2.3.4-14.4.el4_6.1
  • OR OS Section: RHEL5, CentOS5, Oracle Linux 5
  • RHEL5, CentOS5 or Oracle Linux 5
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • OR Oracle Linux 5.x
  • AND Configuration section
  • python-devel is earlier than 0:2.4.3-24.el5_3.6
  • OR tkinter is earlier than 0:2.4.3-24.el5_3.6
  • OR python-tools is earlier than 0:2.4.3-24.el5_3.6
  • OR python is earlier than 0:2.4.3-24.el5_3.6
    • BACK