← Retour aux CVEs
CVE-2009-4134
N/ADescription
Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a large ZSIZE value in a black-and-white (aka B/W) RGB image that triggers an invalid pointer dereference.
Details CVE
Score CVSS v3.1N/A
Publie5/27/2010
Derniere modification4/29/2026
Sourcenvd
Observations honeypot0
Produits affectes
python:python
Faiblesses (CWE)
CWE-787
References
http://bugs.python.org/issue8678(secalert@redhat.com)
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html(secalert@redhat.com)
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html(secalert@redhat.com)
http://secunia.com/advisories/42888(secalert@redhat.com)
http://secunia.com/advisories/43068(secalert@redhat.com)
http://secunia.com/advisories/43364(secalert@redhat.com)
http://support.apple.com/kb/HT4435(secalert@redhat.com)
http://www.mandriva.com/security/advisories?name=MDVSA-2010:215(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2011-0027.html(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2011-0260.html(secalert@redhat.com)
http://www.securityfocus.com/bid/40361(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0122(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0212(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0413(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=541698(secalert@redhat.com)
http://bugs.python.org/issue8678(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/42888(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/43068(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/43364(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT4435(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2010:215(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2011-0027.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2011-0260.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/40361(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0122(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0212(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0413(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=541698(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.