Computer Security
[EN] securityvulns.ru no-pyccku


Python information leak
Published:19.04.2007
Source:
SecurityVulns ID:7604
Type:library
Threat Level:
5/10
Description:strxfrm function leaks memory content.
Affected:PYTHON : python 2.4
 PYTHON : python 2.5
CVE:CVE-2007-2052 (Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer size to be used for the strxfrm function, which allows context-dependent attackers to read portions of memory via unknown manipulations that trigger a buffer over-read due to missing null termination.)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod