CVE 2008-1679
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965.
Related bugs and status
CVE-2008-1679 (Candidate) is related to these bugs:
Bug #209507: All python `idle` packages use the same name in Applications menu
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
209507 | All python `idle` packages use the same name in Applications menu | python2.4 (Ubuntu) | Low | Confirmed | ||
209507 | All python `idle` packages use the same name in Applications menu | python2.5 (Ubuntu) | Low | Fix Released |
Bug #223196: [CVE-2008-1679, CVE-2008-1721] Python 2.5 vulnerabilities
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
223196 | [CVE-2008-1679, CVE-2008-1721] Python 2.5 vulnerabilities | python2.5 (Ubuntu) | Undecided | Fix Released | ||
223196 | [CVE-2008-1679, CVE-2008-1721] Python 2.5 vulnerabilities | python2.5 (Ubuntu Feisty) | Undecided | New | ||
223196 | [CVE-2008-1679, CVE-2008-1721] Python 2.5 vulnerabilities | python2.5 (Ubuntu Gutsy) | Undecided | New |
Bug #224182: email/Message.py set_charset() barfs on unicode, breaks mailman digesting
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
224182 | email/Message.py set_charset() barfs on unicode, breaks mailman digesting | python2.4 (Ubuntu) | Undecided | Fix Released |
Bug #227246: several vulnerabilities
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
227246 | several vulnerabilities | python2.4 (Ubuntu) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.4 (Ubuntu Dapper) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.4 (Ubuntu Feisty) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.4 (Ubuntu Gutsy) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.4 (Ubuntu Hardy) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.5 (Ubuntu) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.5 (Ubuntu Dapper) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.5 (Ubuntu Feisty) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.5 (Ubuntu Gutsy) | Medium | Fix Released | ||
227246 | several vulnerabilities | python2.5 (Ubuntu Hardy) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.