Wind River Support Network

HomeDefectsLIN7-5157
Fixed

LIN7-5157 : Security Advisory - python - CVE-2010-3492

Created: Nov 24, 2015    Updated: Sep 8, 2018
Resolved Date: Nov 25, 2015
Previous ID: LIN5-20923
Found In Version: 7.0.0.11
Fix Version: 7.0.0.12
Severity: Severe
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3492

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online