Python: Multiple vulnerabilities — GLSA 200807-16

Multiple vulnerabilities in Python may allow for the execution of arbitrary code.

Affected packages

Background

Python is an interpreted, interactive, object-oriented programming language.

Description

Multiple vulnerabilities were discovered in Python:

• David Remahl of Apple Product Security reported several integer overflows in core modules such as stringobject, unicodeobject, bufferobject, longobject, tupleobject, stropmodule, gcmodule, mmapmodule (CVE-2008-2315).
• David Remahl of Apple Product Security also reported an integer overflow in the hashlib module, leading to unreliable cryptographic digest results (CVE-2008-2316).
• Justin Ferguson reported multiple buffer overflows in unicode string processing that only affect 32bit systems (CVE-2008-3142).
• The Google Security Team reported multiple integer overflows (CVE-2008-3143).
• Justin Ferguson reported multiple integer underflows and overflows in the PyOS_vsnprintf() function, and an off-by-one error when passing zero-length strings, leading to memory corruption (CVE-2008-3144).

Impact

A remote attacker could exploit these vulnerabilities in Python applications or daemons that pass user-controlled input to vulnerable functions. Exploitation might lead to the execution of arbitrary code or a Denial of Service. Vulnerabilities within the hashlib might lead to weakened cryptographic protection of data integrity or authenticity.

Workaround

There is no known workaround at this time.

Resolution

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-lang/python-2.4.4-r14"

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-lang/python-2.5.2-r6"

References

• CVE-2008-2315
• CVE-2008-2316
• CVE-2008-3142
• CVE-2008-3143
• CVE-2008-3144

Release date
July 31, 2008

Latest revision
July 19, 2009: 02

Severity
normal

Exploitable
remote

Bugzilla entries

• 230640
• 232137