SB2019102516 - Multiple vulnerabilities in Python
Published: October 25, 2019 Updated: June 3, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Race condition (CVE-ID: CVE-2010-3493)
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error, a related issue to CVE-2010-3492.
2) Input validation error (CVE-ID: CVE-2010-1634)
The vulnerability allows context-dependent attackers to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow.
Remediation
Install update from vendor's website.
References
- http://bugs.python.org/issue6706
- http://bugs.python.org/issue9129
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
- http://secunia.com/advisories/43068
- http://secunia.com/advisories/50858
- http://secunia.com/advisories/51024
- http://secunia.com/advisories/51040
- http://svn.python.org/view/python/branches/py3k/Lib/smtpd.py?r1=84289&r2=84288&pathrev=84289
- http://svn.python.org/view?view=rev&revision=84289
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:215
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:216
- http://www.openwall.com/lists/oss-security/2010/09/09/6
- http://www.openwall.com/lists/oss-security/2010/09/11/2
- http://www.openwall.com/lists/oss-security/2010/09/22/3
- http://www.openwall.com/lists/oss-security/2010/09/24/3
- http://www.securityfocus.com/bid/44533
- http://www.ubuntu.com/usn/USN-1596-1
- http://www.ubuntu.com/usn/USN-1613-1
- http://www.ubuntu.com/usn/USN-1613-2
- http://www.vupen.com/english/advisories/2011/0212
- https://bugs.launchpad.net/zodb/+bug/135108
- https://bugzilla.redhat.com/show_bug.cgi?id=632200
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12210
- http://svn.python.org/view?rev=81045&view=rev
- http://secunia.com/advisories/39937
- http://svn.python.org/view?rev=81079&view=rev
- http://bugs.python.org/issue8674
- https://bugzilla.redhat.com/show_bug.cgi?id=590690
- http://www.securityfocus.com/bid/40370
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html
- http://secunia.com/advisories/40194
- http://www.vupen.com/english/advisories/2010/1448
- http://www.vupen.com/english/advisories/2011/0122
- http://secunia.com/advisories/42888
- http://www.redhat.com/support/errata/RHSA-2011-0027.html
- http://support.apple.com/kb/HT5002
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
- http://www.ubuntu.com/usn/USN-1616-1
- http://secunia.com/advisories/51087