Ubuntu
python2.6 package

  1. Bug #1333396
  2. Comment #0

Comment 0 for bug 1333396

Revision history for this message
Gert van Dijk (gertvdijk) wrote :

As reported upstream, the JSON module of Python is vulnerable for reading arbitrary process memory. Please apply the patch as included in the upstream bug report: http://bugs.python.org/issue21529

I'm not aware of any CVE assigned to this bug.

Patch is applied upstream in 2.7.7, so this only applies to current Ubuntu releases.