Action not permitted
Modal body text goes here.
cve-2008-5983
Vulnerability from cvelistv5
Published
2009-01-28 02:00
Modified
2024-08-07 11:13
Severity ?
EPSS score ?
Summary
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T11:13:14.117Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg586010.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"name": "FEDORA-2010-9652",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html"
},
{
"name": "51087",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/51087"
},
{
"name": "[oss-security] 20090130 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/30/2"
},
{
"name": "USN-1616-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1616-1"
},
{
"name": "51040",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/51040"
},
{
"name": "GLSA-200903-41",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-200903-41.xml"
},
{
"name": "[oss-security] 20090126 CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/26/2"
},
{
"name": "ADV-2010-1448",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/1448"
},
{
"name": "50858",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/50858"
},
{
"name": "[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html"
},
{
"name": "GLSA-200904-06",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-200904-06.xml"
},
{
"name": "ADV-2011-0122",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0122"
},
{
"name": "[oss-security] 20090128 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/28/5"
},
{
"name": "34522",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/34522"
},
{
"name": "42888",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/42888"
},
{
"name": "USN-1596-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1596-1"
},
{
"name": "40194",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/40194"
},
{
"name": "RHSA-2011:0027",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0027.html"
},
{
"name": "USN-1613-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1613-2"
},
{
"name": "51024",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/51024"
},
{
"name": "USN-1613-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1613-1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-08-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2009-02-05T10:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg586010.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"name": "FEDORA-2010-9652",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html"
},
{
"name": "51087",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/51087"
},
{
"name": "[oss-security] 20090130 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/30/2"
},
{
"name": "USN-1616-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1616-1"
},
{
"name": "51040",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/51040"
},
{
"name": "GLSA-200903-41",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-200903-41.xml"
},
{
"name": "[oss-security] 20090126 CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/26/2"
},
{
"name": "ADV-2010-1448",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/1448"
},
{
"name": "50858",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/50858"
},
{
"name": "[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html"
},
{
"name": "GLSA-200904-06",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-200904-06.xml"
},
{
"name": "ADV-2011-0122",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0122"
},
{
"name": "[oss-security] 20090128 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/28/5"
},
{
"name": "34522",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/34522"
},
{
"name": "42888",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/42888"
},
{
"name": "USN-1596-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1596-1"
},
{
"name": "40194",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/40194"
},
{
"name": "RHSA-2011:0027",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0027.html"
},
{
"name": "USN-1613-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1613-2"
},
{
"name": "51024",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/51024"
},
{
"name": "USN-1613-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1613-1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-5983",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory",
"refsource": "MLIST",
"url": "http://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg586010.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=482814",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"name": "FEDORA-2010-9652",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html"
},
{
"name": "51087",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/51087"
},
{
"name": "[oss-security] 20090130 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2009/01/30/2"
},
{
"name": "USN-1616-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1616-1"
},
{
"name": "51040",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/51040"
},
{
"name": "GLSA-200903-41",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200903-41.xml"
},
{
"name": "[oss-security] 20090126 CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2009/01/26/2"
},
{
"name": "ADV-2010-1448",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/1448"
},
{
"name": "50858",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/50858"
},
{
"name": "[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd",
"refsource": "MLIST",
"url": "http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html"
},
{
"name": "GLSA-200904-06",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200904-06.xml"
},
{
"name": "ADV-2011-0122",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2011/0122"
},
{
"name": "[oss-security] 20090128 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2009/01/28/5"
},
{
"name": "34522",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/34522"
},
{
"name": "42888",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/42888"
},
{
"name": "USN-1596-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1596-1"
},
{
"name": "40194",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/40194"
},
{
"name": "RHSA-2011:0027",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-0027.html"
},
{
"name": "USN-1613-2",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1613-2"
},
{
"name": "51024",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/51024"
},
{
"name": "USN-1613-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1613-1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-5983",
"datePublished": "2009-01-28T02:00:00",
"dateReserved": "2009-01-27T00:00:00",
"dateUpdated": "2024-08-07T11:13:14.117Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2008-5983\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-01-28T02:30:00.233\",\"lastModified\":\"2023-11-07T02:03:18.393\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de ruta de b\u00fasqueda no confiable en la funci\u00f3n API PySys_SetArgv en Python versi\u00f3n 2.6 y anteriores, y posiblemente versiones posteriores, antepone una cadena vac\u00eda al archivo sys.path cuando el argumento argv [0] no contiene un separador de ruta, lo que podr\u00eda permitir a los usuarios locales ejecutar c\u00f3digo arbitrario por medio de un archivo Python de tipo caballo de Troya en el directorio de trabajo actual.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":6.9},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-426\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.6.6\",\"matchCriteriaId\":\"772EB861-7A7A-4593-9D0D-B343AD1BEEE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1.0\",\"versionEndExcluding\":\"3.1.3\",\"matchCriteriaId\":\"6B1FC450-BBF4-45E2-873E-3EB2CCA23845\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2D59BD0-43DE-4E58-A057-640AB98359A6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"7EBFE35C-E243-43D1-883D-4398D71763CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"01EDA41C-6B2E-49AF-B503-EB3882265C11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF49D26F-142E-468B-87C1-BABEA445255C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4174F4F-149E-41A6-BBCC-D01114C05F38\"}]}]}],\"references\":[{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/34522\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/40194\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/42888\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/50858\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/51024\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/51040\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/51087\",\"source\":\"cve@mitre.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-200903-41.xml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-200904-06.xml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg586010.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2009/01/26/2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2009/01/28/5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2009/01/30/2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0027.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1596-1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1613-1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1613-2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1616-1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/1448\",\"source\":\"cve@mitre.org\",\"tags\":[\"Permissions Required\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0122\",\"source\":\"cve@mitre.org\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=482814\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
rhsa-2011_0027
Vulnerability from csaf_redhat
Published
2011-01-13 10:55
Modified
2024-11-05 17:25
Summary
Red Hat Security Advisory: python security, bug fix, and enhancement update
Notes
Topic
Updated python packages that fix multiple security issues, several bugs,
and add two enhancements are now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having low
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Python is an interpreted, interactive, object-oriented programming
language.
It was found that many applications embedding the Python interpreter did
not specify a valid full path to the script or application when calling the
PySys_SetArgv API function, which could result in the addition of the
current working directory to the module search path (sys.path). A local
attacker able to trick a victim into running such an application in an
attacker-controlled directory could use this flaw to execute code with the
victim's privileges. This update adds the PySys_SetArgvEx API. Developers
can modify their applications to use this new API, which sets sys.argv
without modifying sys.path. (CVE-2008-5983)
Multiple flaws were found in the Python rgbimg module. If an application
written in Python was using the rgbimg module and loaded a
specially-crafted SGI image file, it could cause the application to crash
or, possibly, execute arbitrary code with the privileges of the user
running the application. (CVE-2009-4134, CVE-2010-1449, CVE-2010-1450)
Multiple flaws were found in the Python audioop module. Supplying certain
inputs could cause the audioop module to crash or, possibly, execute
arbitrary code. (CVE-2010-1634, CVE-2010-2089)
This update also fixes the following bugs:
* When starting a child process from the subprocess module in Python 2.4,
the parent process could leak file descriptors if an error occurred. This
update resolves the issue. (BZ#609017)
* Prior to Python 2.7, programs that used "ulimit -n" to enable
communication with large numbers of subprocesses could still monitor only
1024 file descriptors at a time, which caused an exception:
ValueError: filedescriptor out of range in select()
This was due to the subprocess module using the "select" system call. The
module now uses the "poll" system call, removing this limitation.
(BZ#609020)
* Prior to Python 2.5, the tarfile module failed to unpack tar files if the
path was longer than 100 characters. This update backports the tarfile
module from Python 2.5 and the issue no longer occurs. (BZ#263401)
* The email module incorrectly implemented the logic for obtaining
attachment file names: the get_filename() fallback for using the deprecated
"name" parameter of the "Content-Type" header erroneously used the
"Content-Disposition" header. This update backports a fix from Python 2.6,
which resolves this issue. (BZ#644147)
* Prior to version 2.5, Python's optimized memory allocator never released
memory back to the system. The memory usage of a long-running Python
process would resemble a "high-water mark". This update backports a fix
from Python 2.5a1, which frees unused arenas, and adds a non-standard
sys._debugmallocstats() function, which prints diagnostic information to
stderr. Finally, when running under Valgrind, the optimized allocator is
deactivated, to allow more convenient debugging of Python memory usage
issues. (BZ#569093)
* The urllib and urllib2 modules ignored the no_proxy variable, which could
lead to programs such as "yum" erroneously accessing a proxy server for
URLs covered by a "no_proxy" exclusion. This update backports fixes of
urllib and urllib2, which respect the "no_proxy" variable, which fixes
these issues. (BZ#549372)
As well, this update adds the following enhancements:
* This update introduces a new python-libs package, subsuming the majority
of the content of the core python package. This makes both 32-bit and
64-bit Python libraries available on PowerPC systems. (BZ#625372)
* The python-libs.i386 package is now available for 64-bit Itanium with the
32-bit Itanium compatibility mode. (BZ#644761)
All Python users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues and add these
enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated python packages that fix multiple security issues, several bugs,\nand add two enhancements are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Python is an interpreted, interactive, object-oriented programming\nlanguage.\n\nIt was found that many applications embedding the Python interpreter did\nnot specify a valid full path to the script or application when calling the\nPySys_SetArgv API function, which could result in the addition of the\ncurrent working directory to the module search path (sys.path). A local\nattacker able to trick a victim into running such an application in an\nattacker-controlled directory could use this flaw to execute code with the\nvictim\u0027s privileges. This update adds the PySys_SetArgvEx API. Developers\ncan modify their applications to use this new API, which sets sys.argv\nwithout modifying sys.path. (CVE-2008-5983)\n\nMultiple flaws were found in the Python rgbimg module. If an application\nwritten in Python was using the rgbimg module and loaded a\nspecially-crafted SGI image file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2009-4134, CVE-2010-1449, CVE-2010-1450)\n\nMultiple flaws were found in the Python audioop module. Supplying certain\ninputs could cause the audioop module to crash or, possibly, execute\narbitrary code. (CVE-2010-1634, CVE-2010-2089)\n\nThis update also fixes the following bugs:\n\n* When starting a child process from the subprocess module in Python 2.4,\nthe parent process could leak file descriptors if an error occurred. This\nupdate resolves the issue. (BZ#609017)\n\n* Prior to Python 2.7, programs that used \"ulimit -n\" to enable\ncommunication with large numbers of subprocesses could still monitor only\n1024 file descriptors at a time, which caused an exception:\n\n ValueError: filedescriptor out of range in select()\n\nThis was due to the subprocess module using the \"select\" system call. The\nmodule now uses the \"poll\" system call, removing this limitation.\n(BZ#609020)\n\n* Prior to Python 2.5, the tarfile module failed to unpack tar files if the\npath was longer than 100 characters. This update backports the tarfile\nmodule from Python 2.5 and the issue no longer occurs. (BZ#263401)\n\n* The email module incorrectly implemented the logic for obtaining\nattachment file names: the get_filename() fallback for using the deprecated\n\"name\" parameter of the \"Content-Type\" header erroneously used the\n\"Content-Disposition\" header. This update backports a fix from Python 2.6,\nwhich resolves this issue. (BZ#644147)\n\n* Prior to version 2.5, Python\u0027s optimized memory allocator never released\nmemory back to the system. The memory usage of a long-running Python\nprocess would resemble a \"high-water mark\". This update backports a fix\nfrom Python 2.5a1, which frees unused arenas, and adds a non-standard\nsys._debugmallocstats() function, which prints diagnostic information to\nstderr. Finally, when running under Valgrind, the optimized allocator is\ndeactivated, to allow more convenient debugging of Python memory usage\nissues. (BZ#569093)\n\n* The urllib and urllib2 modules ignored the no_proxy variable, which could\nlead to programs such as \"yum\" erroneously accessing a proxy server for\nURLs covered by a \"no_proxy\" exclusion. This update backports fixes of\nurllib and urllib2, which respect the \"no_proxy\" variable, which fixes\nthese issues. (BZ#549372)\n\nAs well, this update adds the following enhancements:\n\n* This update introduces a new python-libs package, subsuming the majority\nof the content of the core python package. This makes both 32-bit and\n64-bit Python libraries available on PowerPC systems. (BZ#625372)\n\n* The python-libs.i386 package is now available for 64-bit Itanium with the\n32-bit Itanium compatibility mode. (BZ#644761)\n\nAll Python users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues and add these\nenhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:0027",
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "482814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"category": "external",
"summary": "541698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=541698"
},
{
"category": "external",
"summary": "569093",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=569093"
},
{
"category": "external",
"summary": "590690",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=590690"
},
{
"category": "external",
"summary": "598197",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=598197"
},
{
"category": "external",
"summary": "609017",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=609017"
},
{
"category": "external",
"summary": "609020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=609020"
},
{
"category": "external",
"summary": "625372",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=625372"
},
{
"category": "external",
"summary": "644147",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=644147"
},
{
"category": "external",
"summary": "644761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=644761"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_0027.json"
}
],
"title": "Red Hat Security Advisory: python security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-05T17:25:29+00:00",
"generator": {
"date": "2024-11-05T17:25:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2011:0027",
"initial_release_date": "2011-01-13T10:55:00+00:00",
"revision_history": [
{
"date": "2011-01-13T10:55:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-01-13T05:58:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T17:25:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "python-0:2.4.3-43.el5.src",
"product": {
"name": "python-0:2.4.3-43.el5.src",
"product_id": "python-0:2.4.3-43.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python@2.4.3-43.el5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.x86_64",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.x86_64",
"product_id": "python-debuginfo-0:2.4.3-43.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.x86_64",
"product": {
"name": "python-devel-0:2.4.3-43.el5.x86_64",
"product_id": "python-devel-0:2.4.3-43.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-0:2.4.3-43.el5.x86_64",
"product": {
"name": "python-0:2.4.3-43.el5.x86_64",
"product_id": "python-0:2.4.3-43.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python@2.4.3-43.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tkinter-0:2.4.3-43.el5.x86_64",
"product": {
"name": "tkinter-0:2.4.3-43.el5.x86_64",
"product_id": "tkinter-0:2.4.3-43.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tkinter@2.4.3-43.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-tools-0:2.4.3-43.el5.x86_64",
"product": {
"name": "python-tools-0:2.4.3-43.el5.x86_64",
"product_id": "python-tools-0:2.4.3-43.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-tools@2.4.3-43.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-libs-0:2.4.3-43.el5.x86_64",
"product": {
"name": "python-libs-0:2.4.3-43.el5.x86_64",
"product_id": "python-libs-0:2.4.3-43.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-libs@2.4.3-43.el5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.i386",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.i386",
"product_id": "python-debuginfo-0:2.4.3-43.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.i386",
"product": {
"name": "python-devel-0:2.4.3-43.el5.i386",
"product_id": "python-devel-0:2.4.3-43.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "python-0:2.4.3-43.el5.i386",
"product": {
"name": "python-0:2.4.3-43.el5.i386",
"product_id": "python-0:2.4.3-43.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python@2.4.3-43.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "tkinter-0:2.4.3-43.el5.i386",
"product": {
"name": "tkinter-0:2.4.3-43.el5.i386",
"product_id": "tkinter-0:2.4.3-43.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tkinter@2.4.3-43.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "python-tools-0:2.4.3-43.el5.i386",
"product": {
"name": "python-tools-0:2.4.3-43.el5.i386",
"product_id": "python-tools-0:2.4.3-43.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-tools@2.4.3-43.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "python-libs-0:2.4.3-43.el5.i386",
"product": {
"name": "python-libs-0:2.4.3-43.el5.i386",
"product_id": "python-libs-0:2.4.3-43.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-libs@2.4.3-43.el5?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "python-0:2.4.3-43.el5.ia64",
"product": {
"name": "python-0:2.4.3-43.el5.ia64",
"product_id": "python-0:2.4.3-43.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python@2.4.3-43.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "tkinter-0:2.4.3-43.el5.ia64",
"product": {
"name": "tkinter-0:2.4.3-43.el5.ia64",
"product_id": "tkinter-0:2.4.3-43.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tkinter@2.4.3-43.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.ia64",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.ia64",
"product_id": "python-debuginfo-0:2.4.3-43.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "python-tools-0:2.4.3-43.el5.ia64",
"product": {
"name": "python-tools-0:2.4.3-43.el5.ia64",
"product_id": "python-tools-0:2.4.3-43.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-tools@2.4.3-43.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "python-libs-0:2.4.3-43.el5.ia64",
"product": {
"name": "python-libs-0:2.4.3-43.el5.ia64",
"product_id": "python-libs-0:2.4.3-43.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-libs@2.4.3-43.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.ia64",
"product": {
"name": "python-devel-0:2.4.3-43.el5.ia64",
"product_id": "python-devel-0:2.4.3-43.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "python-0:2.4.3-43.el5.ppc",
"product": {
"name": "python-0:2.4.3-43.el5.ppc",
"product_id": "python-0:2.4.3-43.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python@2.4.3-43.el5?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "tkinter-0:2.4.3-43.el5.ppc",
"product": {
"name": "tkinter-0:2.4.3-43.el5.ppc",
"product_id": "tkinter-0:2.4.3-43.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tkinter@2.4.3-43.el5?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.ppc",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc",
"product_id": "python-debuginfo-0:2.4.3-43.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "python-tools-0:2.4.3-43.el5.ppc",
"product": {
"name": "python-tools-0:2.4.3-43.el5.ppc",
"product_id": "python-tools-0:2.4.3-43.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-tools@2.4.3-43.el5?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "python-libs-0:2.4.3-43.el5.ppc",
"product": {
"name": "python-libs-0:2.4.3-43.el5.ppc",
"product_id": "python-libs-0:2.4.3-43.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-libs@2.4.3-43.el5?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.ppc",
"product": {
"name": "python-devel-0:2.4.3-43.el5.ppc",
"product_id": "python-devel-0:2.4.3-43.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.ppc64",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc64",
"product_id": "python-debuginfo-0:2.4.3-43.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "python-libs-0:2.4.3-43.el5.ppc64",
"product": {
"name": "python-libs-0:2.4.3-43.el5.ppc64",
"product_id": "python-libs-0:2.4.3-43.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-libs@2.4.3-43.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.ppc64",
"product": {
"name": "python-devel-0:2.4.3-43.el5.ppc64",
"product_id": "python-devel-0:2.4.3-43.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "python-0:2.4.3-43.el5.s390x",
"product": {
"name": "python-0:2.4.3-43.el5.s390x",
"product_id": "python-0:2.4.3-43.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python@2.4.3-43.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "tkinter-0:2.4.3-43.el5.s390x",
"product": {
"name": "tkinter-0:2.4.3-43.el5.s390x",
"product_id": "tkinter-0:2.4.3-43.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tkinter@2.4.3-43.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.s390x",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390x",
"product_id": "python-debuginfo-0:2.4.3-43.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-tools-0:2.4.3-43.el5.s390x",
"product": {
"name": "python-tools-0:2.4.3-43.el5.s390x",
"product_id": "python-tools-0:2.4.3-43.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-tools@2.4.3-43.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-libs-0:2.4.3-43.el5.s390x",
"product": {
"name": "python-libs-0:2.4.3-43.el5.s390x",
"product_id": "python-libs-0:2.4.3-43.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-libs@2.4.3-43.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.s390x",
"product": {
"name": "python-devel-0:2.4.3-43.el5.s390x",
"product_id": "python-devel-0:2.4.3-43.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python-debuginfo-0:2.4.3-43.el5.s390",
"product": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390",
"product_id": "python-debuginfo-0:2.4.3-43.el5.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-debuginfo@2.4.3-43.el5?arch=s390"
}
}
},
{
"category": "product_version",
"name": "python-devel-0:2.4.3-43.el5.s390",
"product": {
"name": "python-devel-0:2.4.3-43.el5.s390",
"product_id": "python-devel-0:2.4.3-43.el5.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-devel@2.4.3-43.el5?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-0:2.4.3-43.el5.i386"
},
"product_reference": "python-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-0:2.4.3-43.el5.src"
},
"product_reference": "python-0:2.4.3-43.el5.src",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.i386"
},
"product_reference": "python-devel-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.s390"
},
"product_reference": "python-devel-0:2.4.3-43.el5.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-devel-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-libs-0:2.4.3-43.el5.i386"
},
"product_reference": "python-libs-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-libs-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-tools-0:2.4.3-43.el5.i386"
},
"product_reference": "python-tools-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-tools-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-tools-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-tools-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-tools-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:tkinter-0:2.4.3-43.el5.i386"
},
"product_reference": "tkinter-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64"
},
"product_reference": "tkinter-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc"
},
"product_reference": "tkinter-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x"
},
"product_reference": "tkinter-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64"
},
"product_reference": "tkinter-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-0:2.4.3-43.el5.i386"
},
"product_reference": "python-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-0:2.4.3-43.el5.src"
},
"product_reference": "python-0:2.4.3-43.el5.src",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.i386"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.s390"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-debuginfo-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.i386"
},
"product_reference": "python-devel-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.s390"
},
"product_reference": "python-devel-0:2.4.3-43.el5.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-devel-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-devel-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-libs-0:2.4.3-43.el5.i386"
},
"product_reference": "python-libs-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-libs-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-libs-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-libs-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-libs-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-libs-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-libs-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-tools-0:2.4.3-43.el5.i386"
},
"product_reference": "python-tools-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-tools-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-tools-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-tools-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-tools-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-tools-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-tools-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:python-tools-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-tools-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:tkinter-0:2.4.3-43.el5.i386"
},
"product_reference": "tkinter-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:tkinter-0:2.4.3-43.el5.ia64"
},
"product_reference": "tkinter-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:tkinter-0:2.4.3-43.el5.ppc"
},
"product_reference": "tkinter-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:tkinter-0:2.4.3-43.el5.s390x"
},
"product_reference": "tkinter-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:tkinter-0:2.4.3-43.el5.x86_64"
},
"product_reference": "tkinter-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-0:2.4.3-43.el5.i386"
},
"product_reference": "python-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-0:2.4.3-43.el5.src"
},
"product_reference": "python-0:2.4.3-43.el5.src",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.i386"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.s390"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-debuginfo-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-debuginfo-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-debuginfo-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.i386"
},
"product_reference": "python-devel-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.s390"
},
"product_reference": "python-devel-0:2.4.3-43.el5.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-devel-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-devel-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-devel-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-devel-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-libs-0:2.4.3-43.el5.i386"
},
"product_reference": "python-libs-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-libs-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-libs-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-libs-0:2.4.3-43.el5.ppc64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-libs-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-libs-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-libs-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-libs-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-libs-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-tools-0:2.4.3-43.el5.i386"
},
"product_reference": "python-tools-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-tools-0:2.4.3-43.el5.ia64"
},
"product_reference": "python-tools-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-tools-0:2.4.3-43.el5.ppc"
},
"product_reference": "python-tools-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-tools-0:2.4.3-43.el5.s390x"
},
"product_reference": "python-tools-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tools-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:python-tools-0:2.4.3-43.el5.x86_64"
},
"product_reference": "python-tools-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:tkinter-0:2.4.3-43.el5.i386"
},
"product_reference": "tkinter-0:2.4.3-43.el5.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:tkinter-0:2.4.3-43.el5.ia64"
},
"product_reference": "tkinter-0:2.4.3-43.el5.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:tkinter-0:2.4.3-43.el5.ppc"
},
"product_reference": "tkinter-0:2.4.3-43.el5.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:tkinter-0:2.4.3-43.el5.s390x"
},
"product_reference": "tkinter-0:2.4.3-43.el5.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tkinter-0:2.4.3-43.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:tkinter-0:2.4.3-43.el5.x86_64"
},
"product_reference": "tkinter-0:2.4.3-43.el5.x86_64",
"relates_to_product_reference": "5Server"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2008-5983",
"discovery_date": "2008-11-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "482814"
}
],
"notes": [
{
"category": "description",
"text": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: untrusted python modules search path",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-5983"
},
{
"category": "external",
"summary": "RHBZ#482814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-5983",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5983"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-5983",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-5983"
}
],
"release_date": "2008-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-01-13T10:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "python: untrusted python modules search path"
},
{
"cve": "CVE-2009-4134",
"discovery_date": "2009-11-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "541698"
}
],
"notes": [
{
"category": "description",
"text": "Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a large ZSIZE value in a black-and-white (aka B/W) RGB image that triggers an invalid pointer dereference.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: rgbimg: multiple security issues",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Security Response Team has rated this issue as having low security\nimpact, a future update may address this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2009-4134"
},
{
"category": "external",
"summary": "RHBZ#541698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=541698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2009-4134",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4134"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4134",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4134"
}
],
"release_date": "2010-05-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-01-13T10:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "python: rgbimg: multiple security issues"
},
{
"cve": "CVE-2010-1449",
"discovery_date": "2009-11-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "541698"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: rgbimg: multiple security issues",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Security Response Team has rated this issue as having low security\nimpact, a future update may address this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2010-1449"
},
{
"category": "external",
"summary": "RHBZ#541698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=541698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2010-1449",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1449"
}
],
"release_date": "2010-05-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-01-13T10:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "python: rgbimg: multiple security issues"
},
{
"cve": "CVE-2010-1450",
"discovery_date": "2009-11-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "541698"
}
],
"notes": [
{
"category": "description",
"text": "Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the (1) longimagedata or (2) expandrow function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: rgbimg: multiple security issues",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Security Response Team has rated this issue as having low security\nimpact, a future update may address this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2010-1450"
},
{
"category": "external",
"summary": "RHBZ#541698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=541698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2010-1450",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1450"
}
],
"release_date": "2010-05-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-01-13T10:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "python: rgbimg: multiple security issues"
},
{
"cve": "CVE-2010-1634",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2009-11-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "590690"
}
],
"notes": [
{
"category": "description",
"text": "Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-3143.5.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: audioop: incorrect integer overflow checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2010-1634"
},
{
"category": "external",
"summary": "RHBZ#590690",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=590690"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2010-1634",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1634"
}
],
"release_date": "2010-05-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-01-13T10:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "python: audioop: incorrect integer overflow checks"
},
{
"cve": "CVE-2010-2089",
"discovery_date": "2010-05-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "598197"
}
],
"notes": [
{
"category": "description",
"text": "The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Python: Memory corruption in audioop module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2010-2089"
},
{
"category": "external",
"summary": "RHBZ#598197",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=598197"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2010-2089",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2089"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-2089",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2089"
}
],
"release_date": "2010-01-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-01-13T10:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:0027"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:python-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-0:2.4.3-43.el5.src",
"5Client-Workstation:python-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-devel-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.ppc64",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-libs-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.i386",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ia64",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.ppc",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.s390x",
"5Client-Workstation:python-tools-0:2.4.3-43.el5.x86_64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.i386",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ia64",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.ppc",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.s390x",
"5Client-Workstation:tkinter-0:2.4.3-43.el5.x86_64",
"5Client:python-0:2.4.3-43.el5.i386",
"5Client:python-0:2.4.3-43.el5.ia64",
"5Client:python-0:2.4.3-43.el5.ppc",
"5Client:python-0:2.4.3-43.el5.s390x",
"5Client:python-0:2.4.3-43.el5.src",
"5Client:python-0:2.4.3-43.el5.x86_64",
"5Client:python-debuginfo-0:2.4.3-43.el5.i386",
"5Client:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Client:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390",
"5Client:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Client:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Client:python-devel-0:2.4.3-43.el5.i386",
"5Client:python-devel-0:2.4.3-43.el5.ia64",
"5Client:python-devel-0:2.4.3-43.el5.ppc",
"5Client:python-devel-0:2.4.3-43.el5.ppc64",
"5Client:python-devel-0:2.4.3-43.el5.s390",
"5Client:python-devel-0:2.4.3-43.el5.s390x",
"5Client:python-devel-0:2.4.3-43.el5.x86_64",
"5Client:python-libs-0:2.4.3-43.el5.i386",
"5Client:python-libs-0:2.4.3-43.el5.ia64",
"5Client:python-libs-0:2.4.3-43.el5.ppc",
"5Client:python-libs-0:2.4.3-43.el5.ppc64",
"5Client:python-libs-0:2.4.3-43.el5.s390x",
"5Client:python-libs-0:2.4.3-43.el5.x86_64",
"5Client:python-tools-0:2.4.3-43.el5.i386",
"5Client:python-tools-0:2.4.3-43.el5.ia64",
"5Client:python-tools-0:2.4.3-43.el5.ppc",
"5Client:python-tools-0:2.4.3-43.el5.s390x",
"5Client:python-tools-0:2.4.3-43.el5.x86_64",
"5Client:tkinter-0:2.4.3-43.el5.i386",
"5Client:tkinter-0:2.4.3-43.el5.ia64",
"5Client:tkinter-0:2.4.3-43.el5.ppc",
"5Client:tkinter-0:2.4.3-43.el5.s390x",
"5Client:tkinter-0:2.4.3-43.el5.x86_64",
"5Server:python-0:2.4.3-43.el5.i386",
"5Server:python-0:2.4.3-43.el5.ia64",
"5Server:python-0:2.4.3-43.el5.ppc",
"5Server:python-0:2.4.3-43.el5.s390x",
"5Server:python-0:2.4.3-43.el5.src",
"5Server:python-0:2.4.3-43.el5.x86_64",
"5Server:python-debuginfo-0:2.4.3-43.el5.i386",
"5Server:python-debuginfo-0:2.4.3-43.el5.ia64",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc",
"5Server:python-debuginfo-0:2.4.3-43.el5.ppc64",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390",
"5Server:python-debuginfo-0:2.4.3-43.el5.s390x",
"5Server:python-debuginfo-0:2.4.3-43.el5.x86_64",
"5Server:python-devel-0:2.4.3-43.el5.i386",
"5Server:python-devel-0:2.4.3-43.el5.ia64",
"5Server:python-devel-0:2.4.3-43.el5.ppc",
"5Server:python-devel-0:2.4.3-43.el5.ppc64",
"5Server:python-devel-0:2.4.3-43.el5.s390",
"5Server:python-devel-0:2.4.3-43.el5.s390x",
"5Server:python-devel-0:2.4.3-43.el5.x86_64",
"5Server:python-libs-0:2.4.3-43.el5.i386",
"5Server:python-libs-0:2.4.3-43.el5.ia64",
"5Server:python-libs-0:2.4.3-43.el5.ppc",
"5Server:python-libs-0:2.4.3-43.el5.ppc64",
"5Server:python-libs-0:2.4.3-43.el5.s390x",
"5Server:python-libs-0:2.4.3-43.el5.x86_64",
"5Server:python-tools-0:2.4.3-43.el5.i386",
"5Server:python-tools-0:2.4.3-43.el5.ia64",
"5Server:python-tools-0:2.4.3-43.el5.ppc",
"5Server:python-tools-0:2.4.3-43.el5.s390x",
"5Server:python-tools-0:2.4.3-43.el5.x86_64",
"5Server:tkinter-0:2.4.3-43.el5.i386",
"5Server:tkinter-0:2.4.3-43.el5.ia64",
"5Server:tkinter-0:2.4.3-43.el5.ppc",
"5Server:tkinter-0:2.4.3-43.el5.s390x",
"5Server:tkinter-0:2.4.3-43.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "Python: Memory corruption in audioop module"
}
]
}
ghsa-4jhg-wfq8-3vgm
Vulnerability from github
Published
2022-05-17 05:10
Modified
2022-05-17 05:10
Details
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.
{
"affected": [],
"aliases": [
"CVE-2008-5983"
],
"database_specific": {
"cwe_ids": [
"CWE-426"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2009-01-28T02:30:00Z",
"severity": "MODERATE"
},
"details": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.",
"id": "GHSA-4jhg-wfq8-3vgm",
"modified": "2022-05-17T05:10:00Z",
"published": "2022-05-17T05:10:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-5983"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/34522"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/40194"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/42888"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/50858"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/51024"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/51040"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/51087"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-200903-41.xml"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-200904-06.xml"
},
{
"type": "WEB",
"url": "http://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg586010.html"
},
{
"type": "WEB",
"url": "http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2009/01/26/2"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2009/01/28/5"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2009/01/30/2"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-0027.html"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-1596-1"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-1613-1"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-1613-2"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-1616-1"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2010/1448"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2011/0122"
}
],
"schema_version": "1.4.0",
"severity": []
}
gsd-2008-5983
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2008-5983",
"description": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.",
"id": "GSD-2008-5983",
"references": [
"https://www.suse.com/security/cve/CVE-2008-5983.html",
"https://access.redhat.com/errata/RHSA-2011:0027",
"https://linux.oracle.com/cve/CVE-2008-5983.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2008-5983"
],
"details": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory.",
"id": "GSD-2008-5983",
"modified": "2023-12-13T01:23:04.732727Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-5983",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory",
"refsource": "MLIST",
"url": "http://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg586010.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=482814",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"name": "FEDORA-2010-9652",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html"
},
{
"name": "51087",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/51087"
},
{
"name": "[oss-security] 20090130 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2009/01/30/2"
},
{
"name": "USN-1616-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1616-1"
},
{
"name": "51040",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/51040"
},
{
"name": "GLSA-200903-41",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200903-41.xml"
},
{
"name": "[oss-security] 20090126 CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2009/01/26/2"
},
{
"name": "ADV-2010-1448",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/1448"
},
{
"name": "50858",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/50858"
},
{
"name": "[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd",
"refsource": "MLIST",
"url": "http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html"
},
{
"name": "GLSA-200904-06",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200904-06.xml"
},
{
"name": "ADV-2011-0122",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2011/0122"
},
{
"name": "[oss-security] 20090128 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2009/01/28/5"
},
{
"name": "34522",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/34522"
},
{
"name": "42888",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/42888"
},
{
"name": "USN-1596-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1596-1"
},
{
"name": "40194",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/40194"
},
{
"name": "RHSA-2011:0027",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-0027.html"
},
{
"name": "USN-1613-2",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1613-2"
},
{
"name": "51024",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/51024"
},
{
"name": "USN-1613-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1613-1"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "3.1.3",
"versionStartIncluding": "3.1.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.6.6",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-5983"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse Python file in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-426"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20090126 CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/26/2"
},
{
"name": "[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory",
"refsource": "MLIST",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "http://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg586010.html"
},
{
"name": "[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd",
"refsource": "MLIST",
"tags": [
"Broken Link"
],
"url": "http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html"
},
{
"name": "[oss-security] 20090128 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/28/5"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=482814",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=482814"
},
{
"name": "[oss-security] 20090130 Re: CVE request -- Python \u003c 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2009/01/30/2"
},
{
"name": "GLSA-200903-41",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "http://security.gentoo.org/glsa/glsa-200903-41.xml"
},
{
"name": "34522",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/34522"
},
{
"name": "GLSA-200904-06",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "http://security.gentoo.org/glsa/glsa-200904-06.xml"
},
{
"name": "FEDORA-2010-9652",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html"
},
{
"name": "ADV-2010-1448",
"refsource": "VUPEN",
"tags": [
"Permissions Required"
],
"url": "http://www.vupen.com/english/advisories/2010/1448"
},
{
"name": "40194",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/40194"
},
{
"name": "RHSA-2011:0027",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0027.html"
},
{
"name": "42888",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/42888"
},
{
"name": "ADV-2011-0122",
"refsource": "VUPEN",
"tags": [
"Permissions Required"
],
"url": "http://www.vupen.com/english/advisories/2011/0122"
},
{
"name": "USN-1596-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1596-1"
},
{
"name": "USN-1613-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1613-2"
},
{
"name": "USN-1613-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1613-1"
},
{
"name": "51040",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/51040"
},
{
"name": "50858",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/50858"
},
{
"name": "USN-1616-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1616-1"
},
{
"name": "51087",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/51087"
},
{
"name": "51024",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/51024"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
}
},
"lastModifiedDate": "2022-07-05T18:57Z",
"publishedDate": "2009-01-28T02:30Z"
}
}
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.