Wind River Support Network

HomeDefectsLIN6-10562
Fixed

LIN6-10562 : Security Advisory - python - CVE-2010-3492

Created: Nov 24, 2015    Updated: Dec 3, 2018
Resolved Date: Nov 25, 2015
Previous ID: LIN5-20925
Found In Version: 6.0.0.26
Fix Version: 6.0.0.27
Severity: Severe
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3492

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online