CVE-2007-4965: Buffer Overflow

First published: Tue Sep 18 2007(Updated: )

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Python Python	<=2.5.1
Python Software Foundation Python	=2.2
Python Software Foundation Python	=2.4.4
Python Software Foundation Python	=2.0.1
Python Software Foundation Python	=1.6
Python Software Foundation Python	=2.4.3
Python Software Foundation Python	=2.3.2
Python Software Foundation Python	=2.3.3
Python Software Foundation Python	=1.5.2
Python Software Foundation Python	=2.1.2
Python Software Foundation Python	=2.4.1
Python Software Foundation Python	=2.4
Python Software Foundation Python	=2.3
Python Software Foundation Python	=2.1
Python Software Foundation Python	=2.2.2
Python Software Foundation Python	=2.3.5
Python Software Foundation Python	=2.5.1
Python Software Foundation Python	=1.6.1
Python Software Foundation Python	=2.3.1
Python Software Foundation Python	=2.1.3
Python Software Foundation Python	=2.4.2
Python Software Foundation Python	=2.3.4
Python Software Foundation Python	=2.5
Python Software Foundation Python	=2.3.6
Python Software Foundation Python	=2.0
Python Software Foundation Python	=2.1.1
Python Software Foundation Python	=2.2.1
Python Software Foundation Python	=2.2.3

Never miss a vulnerability like this again

Reference Links

collector/nvd-historical
collector/nvd-index
agent/references
agent/weakness
agent/severity
agent/author
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/type
agent/event
agent/tags
collector/nvd-api
agent/software-canonical-lookup-request
vendor/python software foundation
canonical/python software foundation python
version/python software foundation python/2.2
version/python software foundation python/2.4.4
version/python software foundation python/2.0.1
version/python software foundation python/1.6
version/python software foundation python/2.4.3
version/python software foundation python/2.3.2
version/python software foundation python/2.3.3
version/python software foundation python/1.5.2
version/python software foundation python/2.1.2
version/python software foundation python/2.4.1
version/python software foundation python/2.4
version/python software foundation python/2.3
version/python software foundation python/2.1
version/python software foundation python/2.2.2
version/python software foundation python/2.3.5
version/python software foundation python/2.5.1
version/python software foundation python/1.6.1
version/python software foundation python/2.3.1
version/python software foundation python/2.1.3
version/python software foundation python/2.4.2
version/python software foundation python/2.3.4
version/python software foundation python/2.5
version/python software foundation python/2.3.6
version/python software foundation python/2.0
version/python software foundation python/2.1.1
version/python software foundation python/2.2.1
version/python software foundation python/2.2.3
vendor/python
canonical/python python
version/python python/2.5.1

CVE-2007-4965: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact