Wind River Support Network

HomeDefectsLIN7-83
Fixed

LIN7-83 : Security Advisory - python - CVE-2014-1912

Created: May 19, 2014    Updated: Mar 31, 2016
Resolved Date: Jun 5, 2014
Found In Version: 7.0.0.0.LB07
Fix Version: 7.0
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code via a crafted string.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1912
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube