Wind River Support Network

HomeDefectsLIN8-1796
Fixed

LIN8-1796 : Security Advisory - python - CVE-2010-3492

Created: Nov 25, 2015    Updated: Dec 3, 2018
Resolved Date: Jan 19, 2017
Previous ID: LIN7-5161
Found In Version: 8.0
Fix Version: 8.0.0.14
Severity: Severe
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3492

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online