CVE-2007-4965: Integer Overflow
First published: Tue Sep 18 2007(Updated: )
Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CPython | =2.2 | |
| CPython | =2.4.4 | |
| CPython | =2.0.1 | |
| CPython | =1.6 | |
| CPython | =2.4.3 | |
| CPython | =2.3.2 | |
| CPython | =2.3.3 | |
| CPython | =1.5.2 | |
| CPython | =2.1.2 | |
| CPython | =2.4.1 | |
| CPython | =2.4 | |
| CPython | =2.3 | |
| CPython | =2.1 | |
| CPython | =2.2.2 | |
| CPython | =2.3.5 | |
| CPython | =2.5.1 | |
| CPython | =1.6.1 | |
| CPython | =2.3.1 | |
| CPython | =2.1.3 | |
| CPython | =2.4.2 | |
| CPython | =2.3.4 | |
| CPython | =2.5 | |
| CPython | =2.3.6 | |
| CPython | =2.0 | |
| CPython | =2.1.1 | |
| CPython | =2.2.1 | |
| CPython | =2.2.3 | |
| Python Babel Localedata | <=2.5.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065826.html
- http://www.securityfocus.com/bid/25696
- http://bugs.gentoo.org/show_bug.cgi?id=192876
- https://issues.rpath.com/browse/RPL-1885
- https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00378.html
- http://www.gentoo.org/security/en/glsa/glsa-200711-07.xml
- http://www.redhat.com/support/errata/RHSA-2007-1076.html
- http://secunia.com/advisories/26837
- http://secunia.com/advisories/27460
- http://secunia.com/advisories/27562
- http://secunia.com/advisories/27872
- http://docs.info.apple.com/article.html?artnum=307179
- http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html
- http://www.us-cert.gov/cas/techalerts/TA07-352A.html
- http://secunia.com/advisories/28136
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:012
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:013
- http://secunia.com/advisories/28480
- http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
- http://secunia.com/advisories/28838
- http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0254
- http://lists.vmware.com/pipermail/security-announce/2008/000005.html
- http://secunia.com/advisories/29032
- http://www.ubuntu.com/usn/usn-585-1
- http://secunia.com/advisories/29303
- http://www.debian.org/security/2008/dsa-1551
- http://secunia.com/advisories/29889
- http://www.debian.org/security/2008/dsa-1620
- http://secunia.com/advisories/31255
- http://secunia.com/advisories/31492
- http://www.redhat.com/support/errata/RHSA-2008-0629.html
- http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
- http://secunia.com/advisories/33937
- http://support.apple.com/kb/HT3438
- http://www.vmware.com/security/advisories/VMSA-2009-0016.html
- http://www.vupen.com/english/advisories/2009/3316
- http://secunia.com/advisories/37471
- http://support.avaya.com/css/P8/documents/100074697
- http://secunia.com/advisories/38675
- http://www.vupen.com/english/advisories/2007/4238
- http://www.vupen.com/english/advisories/2008/0637
- http://www.vupen.com/english/advisories/2007/3201
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36653
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8496
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8486
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10804
- http://www.securityfocus.com/archive/1/507985/100/0/threaded
- http://www.securityfocus.com/archive/1/488457/100/0/threaded
- http://www.securityfocus.com/archive/1/487990/100/0/threaded
Frequently Asked Questions
What versions of Python are affected by CVE-2007-4965?
CVE-2007-4965 affects Python versions 2.5.1 and earlier, including versions 2.0 through 2.5.
What type of vulnerability is identified in CVE-2007-4965?
CVE-2007-4965 is identified as an integer overflow vulnerability in the imageop module.
What impact does CVE-2007-4965 have on affected systems?
CVE-2007-4965 can lead to denial of service due to application crashes and may expose sensitive memory contents to attackers.
How do I remediate the vulnerability identified in CVE-2007-4965?
To remediate CVE-2007-4965, upgrade to Python version 2.6 or later, which addresses this vulnerability.
Is CVE-2007-4965 related to specific functions in Python?
Yes, CVE-2007-4965 is related to the tovideo method and potentially other unspecified functions in the imageop module.
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/references
- agent/severity
- agent/description
- agent/event
- collector/nvd-historical
- agent/software-canonical-lookup-request
- agent/author
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- collector/nvd-index
- vendor/python software foundation
- canonical/cpython
- version/cpython/2.2
- version/cpython/2.4.4
- version/cpython/2.0.1
- version/cpython/1.6
- version/cpython/2.4.3
- version/cpython/2.3.2
- version/cpython/2.3.3
- version/cpython/1.5.2
- version/cpython/2.1.2
- version/cpython/2.4.1
- version/cpython/2.4
- version/cpython/2.3
- version/cpython/2.1
- version/cpython/2.2.2
- version/cpython/2.3.5
- version/cpython/2.5.1
- version/cpython/1.6.1
- version/cpython/2.3.1
- version/cpython/2.1.3
- version/cpython/2.4.2
- version/cpython/2.3.4
- version/cpython/2.5
- version/cpython/2.3.6
- version/cpython/2.0
- version/cpython/2.1.1
- version/cpython/2.2.1
- version/cpython/2.2.3
- vendor/python
- canonical/python babel localedata
- version/python babel localedata/2.5.1