Oval Definition:	oval:org.mitre.oval:def:21923
Revision Date: 2014-02-24 Version: 62 Title: RHSA-2011:0492: python security update (Moderate) Description: The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2011:0492 CVE-2009-3720 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 RHSA-2011:0492-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): python Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages section python-devel is earlier than 0:2.4.3-44.el5 OR python-libs is earlier than 0:2.4.3-44.el5 OR tkinter is earlier than 0:2.4.3-44.el5 OR python is earlier than 0:2.4.3-44.el5 OR python-tools is earlier than 0:2.4.3-44.el5
BACK