QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-1679

Back to search

CVE-2008-1679

Published: Apr 21, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965.

VendorProductVersions

n/a

n/a

affected
n/a

References

SUSE-SR:2008:017
vendor-advisory
x_refsource_SUSE
GLSA-200807-01
vendor-advisory
x_refsource_GENTOO
30872
third-party-advisory
x_refsource_SECUNIA
38675
third-party-advisory
x_refsource_SECUNIA
33937
third-party-advisory
x_refsource_SECUNIA
29955
third-party-advisory
x_refsource_SECUNIA
31687
third-party-advisory
x_refsource_SECUNIA
DSA-1551
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:10583
vdb-entry
signature
x_refsource_OVAL
APPLE-SA-2009-02-12
vendor-advisory
x_refsource_APPLE
31358
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:7800
vdb-entry
signature
x_refsource_OVAL
USN-632-1
vendor-advisory
x_refsource_UBUNTU
MDVSA-2008:164
vendor-advisory
x_refsource_MANDRIVA
31518
third-party-advisory
x_refsource_SECUNIA
31365
third-party-advisory
x_refsource_SECUNIA
31255
third-party-advisory
x_refsource_SECUNIA
DSA-1620
vendor-advisory
x_refsource_DEBIAN
MDVSA-2008:163
vendor-advisory
x_refsource_MANDRIVA
python-imageopc-bo(41958)
vdb-entry
x_refsource_XF
SSA:2008-217-01
vendor-advisory
x_refsource_SLACKWARE
29889
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now