Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA159] DSA-159-1 python


Vulnerability Assessment Details

[DSA159] DSA-159-1 python

Vulnerability Assessment Summary
DSA-159-1 python

Detailed Explanation for this Vulnerability Assessment

Zack Weinberg discovered an insecure use of a temporary file in
os._execvpe from os.py. It uses a predictable name which could lead
execution of arbitrary code.
This problem has been fixed in several versions of Python: For the
current stable distribution (woody) it has been fixed in version
1.5.2-23.1 of Python 1.5, in version 2.1.3-3.1 of Python 2.1 and in
version 2.2.1-4.1 of Python 2.2. For the old stable distribution
(potato) this has been fixed in version 1.5.2-10potato12 for Python
1.5. For the unstable distribution (sid) this has been fixed in
version 1.5.2-24 of Python 1.5, in version 2.1.3-6a of Python 2.1 and
in version 2.2.1-8 of Python 2.2. Python 2.3 is not affected by this
problem.
We recommend that you upgrade your Python packages immediately.


Solution : http://www.debian.org/security/2002/dsa-159
Network Security Threat Level: High

Networks Security ID: 5581

Vulnerability Assessment Copyright: This script is (C) 2005 Michel Arboi

Cables, Connectors

Unisys A1 A4 A6 Mainframe T / IOA Board 34476739 oldies & vintage
$99.0
Unisys A1 A4 A6 Mainframe T / IOA Board 34476739 oldies & vintage pictureUnisys A1 A4 A6 Mainframe DMCU Board 34538223 34533877 34538215 oldies & vintage
$99.0
Unisys A1 A4 A6 Mainframe DMCU Board 34538223 34533877 34538215 oldies & vintage pictureUnisys A1 A4 A6 Mainframe PCC Board 34611988 34660282 34611970 oldies & vintage
$99.0
Unisys A1 A4 A6 Mainframe PCC Board 34611988 34660282 34611970 oldies & vintage pictureUnisys A1 A4 A6 Mainframe MIC UIP Board 34561811 34536144 34561829 old & vintage
$99.0
Unisys A1 A4 A6 Mainframe MIC UIP Board 34561811 34536144 34561829 old & vintage picture


Discussions

No Discussions have been posted on this vulnerability.