Oval Definition:oval:org.mitre.oval:def:13081
Revision Date:2014-06-30Version:20
Title:USN-806-1 -- python2.4, python2.5 vulnerabilities
Description:It was discovered that Python incorrectly handled certain arguments in the imageop module. If an attacker were able to pass specially crafted arguments through the crop function, they could execute arbitrary code with user privileges. For Python 2.5, this issue only affected Ubuntu 8.04 LTS. Multiple integer overflows were discovered in Python�s stringobject and unicodeobject expandtabs method. If an attacker were able to exploit these flaws they could execute arbitrary code with user privileges or cause Python applications to crash, leading to a denial of service
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-4864
CVE-2008-5031
USN-806-1
USN-806-1
Platform(s):Ubuntu 6.06
Ubuntu 8.04
Ubuntu 8.10
Product(s):python2.4
python2.5
Definition Synopsis
  • Release section
  • Ubuntu 8.04 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • idle-python2.5 DPKG is earlier than 2.5.2-2ubuntu6
  • OR idle-python2.4 DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.4-doc DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.5-examples DPKG is earlier than 2.5.2-2ubuntu6
  • OR python2.4-examples DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.5-doc DPKG is earlier than 2.5.2-2ubuntu6
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is lpia
  • AND Packages section
  • python2.4-dbg DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.4-minimal DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.5 DPKG is earlier than 2.5.2-2ubuntu6
  • OR python2.4 DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.5-minimal DPKG is earlier than 2.5.2-2ubuntu6
  • OR python2.4-dev DPKG is earlier than 2.4.5-1ubuntu4.2
  • OR python2.5-dbg DPKG is earlier than 2.5.2-2ubuntu6
  • OR python2.5-dev DPKG is earlier than 2.5.2-2ubuntu6
  • OR Release section
  • Ubuntu 6.06 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • python2.4-examples DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR idle-python2.4 DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR python2.4-doc DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is amd64
  • OR Installed architecture is i386
  • AND Packages section
  • python2.4-dev DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR python2.4-minimal DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR python2.4 DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR python2.4-dbg DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR python2.4-gdbm DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR python2.4-tk DPKG is earlier than 2.4.3-0ubuntu6.3
  • OR Release section
  • Ubuntu 8.10 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • python2.4-examples DPKG is earlier than 2.4.5-5ubuntu1.1
  • OR idle-python2.4 DPKG is earlier than 2.4.5-5ubuntu1.1
  • OR python2.4-doc DPKG is earlier than 2.4.5-5ubuntu1.1
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is lpia
  • AND Packages section
  • python2.4-dbg DPKG is earlier than 2.4.5-5ubuntu1.1
  • OR python2.4 DPKG is earlier than 2.4.5-5ubuntu1.1
  • OR python2.4-minimal DPKG is earlier than 2.4.5-5ubuntu1.1
  • OR python2.4-dev DPKG is earlier than 2.4.5-5ubuntu1.1
    • BACK