python <= 2.5.2, zlib module buffer overflow
Bug #216503 reported by
Marcin Banasiak
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
PLD Linux |
Fix Released
|
High
|
Elan Ruusamäe |
Bug Description
Description:
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.
CVE References
To post a comment you must log in.
Patch can be found at http:// svn.python. org/view? rev=62235& view=rev