Логотип exploitDog
product: "python"
Консоль
Логотип exploitDog

exploitDog

product: "python"
Python

Pythonвысокоуровневый язык программирования общего назначения. Его философия дизайна делает акцент на читаемости кода.

Релизный цикл, информация об уязвимостях

Продукт: Python
Вендор: python

График релизов

3.93.103.113.123.1320202021202220232024202520262027202820292030

Недавние уязвимости Python

Количество 870

redhat логотип

CVE-2010-3493

около 15 лет назад

Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error, a related issue to CVE-2010-3492.

CVSS2: 5
EPSS: Низкий
nvd логотип

CVE-2010-2089

около 15 лет назад

The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.

CVSS2: 5
EPSS: Средний
debian логотип

CVE-2010-2089

около 15 лет назад

The audioop module in Python 2.7 and 3.2 does not verify the relations ...

CVSS2: 5
EPSS: Средний
nvd логотип

CVE-2010-1634

около 15 лет назад

Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-3143.5.

CVSS2: 5
EPSS: Низкий
debian логотип

CVE-2010-1634

около 15 лет назад

Multiple integer overflows in audioop.c in the audioop module in Pytho ...

CVSS2: 5
EPSS: Низкий
nvd логотип

CVE-2010-1450

около 15 лет назад

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the (1) longimagedata or (2) expandrow function.

CVSS2: 7.5
EPSS: Низкий
debian логотип

CVE-2010-1450

около 15 лет назад

Multiple buffer overflows in the RLE decoder in the rgbimg module in P ...

CVSS2: 7.5
EPSS: Низкий
nvd логотип

CVE-2010-1449

около 15 лет назад

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12.

CVSS2: 7.5
EPSS: Низкий
debian логотип

CVE-2010-1449

около 15 лет назад

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 ...

CVSS2: 7.5
EPSS: Низкий
nvd логотип

CVE-2009-4134

около 15 лет назад

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a large ZSIZE value in a black-and-white (aka B/W) RGB image that triggers an invalid pointer dereference.

CVSS2: 5
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
1
redhat логотип
CVE-2010-3493

Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error, a related issue to CVE-2010-3492.

CVSS2: 5
1%
Низкий
около 15 лет назад
nvd логотип
CVE-2010-2089

The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.

CVSS2: 5
16%
Средний
около 15 лет назад
debian логотип
CVE-2010-2089

The audioop module in Python 2.7 and 3.2 does not verify the relations ...

CVSS2: 5
16%
Средний
около 15 лет назад
nvd логотип
CVE-2010-1634

Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-3143.5.

CVSS2: 5
2%
Низкий
около 15 лет назад
debian логотип
CVE-2010-1634

Multiple integer overflows in audioop.c in the audioop module in Pytho ...

CVSS2: 5
2%
Низкий
около 15 лет назад
nvd логотип
CVE-2010-1450

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the (1) longimagedata or (2) expandrow function.

CVSS2: 7.5
3%
Низкий
около 15 лет назад
debian логотип
CVE-2010-1450

Multiple buffer overflows in the RLE decoder in the rgbimg module in P ...

CVSS2: 7.5
3%
Низкий
около 15 лет назад
nvd логотип
CVE-2010-1449

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12.

CVSS2: 7.5
4%
Низкий
около 15 лет назад
debian логотип
CVE-2010-1449

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 ...

CVSS2: 7.5
4%
Низкий
около 15 лет назад
nvd логотип
CVE-2009-4134

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a large ZSIZE value in a black-and-white (aka B/W) RGB image that triggers an invalid pointer dereference.

CVSS2: 5
3%
Низкий
около 15 лет назад

Уязвимостей на страницу


Поделиться