CVE-2010-2089

Published: 27 May 2010

The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.

Priority

Low

Status

Package Release Status
python2.4
Launchpad, Ubuntu, Debian
Upstream Needed

python2.5
Launchpad, Ubuntu, Debian
Upstream Needed

python2.6
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.5+20100706-1)
Patches:
Upstream: http://svn.python.org/view?view=rev&revision=82494
Upstream: http://hg.python.org/cpython/rev/29116b2fcffe
python2.7
Launchpad, Ubuntu, Debian
Upstream
Released (2.7-1)
python3.1
Launchpad, Ubuntu, Debian
Upstream
Released (3.1.3-1)
Patches:
Upstream: http://hg.python.org/cpython/rev/7184421f83b5 (pt1)
Upstream: http://hg.python.org/cpython/rev/b67f720998a8 (pt2)
python3.2
Launchpad, Ubuntu, Debian
Upstream
Released (3.2)