FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

non port: head/lang/python32/files/patch-CVE-2014-1912
SVNWeb

Number of commits found: 1

Sat, 1 Mar 2014
[ 10:52 koobs ] Original commit 
346614 lang/python27/Makefile
346614 lang/python27/files/patch-CVE-2014-1912
346614 lang/python31/Makefile
346614 lang/python31/files/patch-CVE-2014-1912
346614 lang/python32/Makefile
346614 lang/python32/files/patch-CVE-2014-1912
346614 lang/python33/Makefile
346614 lang/python33/files/patch-CVE-2014-1912
lang/python*: Backport security fix for CVE-2014-1912

A vulnerability was reported [1] in Python's socket module, due to a
boundary error within the sock_recvfrom_into() function, which could be
exploited to cause a buffer overflow.

This could be used to crash a Python application that uses the
socket.recvfrom_info() function or, possibly, execute arbitrary code
with the permissions of the user running vulnerable Python code.

This vulnerable function, socket.recvfrom_into(), was introduced in
Python 2.5. Earlier versions are not affected by this flaw.  This is
fixed in upstream branches for version 2.7, 3.1, 3.2 and 3.3.

[1] http://bugs.python.org/issue20246

MFH:		2014Q1
Security:	8e5e6d42-a0fa-11e3-b09a-080027f2d077

Number of commits found: 1

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
dnscrypt-proxy*Feb 14
horde-baseFeb 14
pear-Horde_CoreFeb 14
nghttp2Feb 13
qemu*Feb 13
qemu*Feb 13
qemu*Feb 13
qemu*Feb 13
qemu*Feb 13
qemu-devel*Feb 13
qemu-devel*Feb 13
qemu-devel*Feb 13
qemu-devel*Feb 13
qemu-devel*Feb 13
qemu-sbruno*Feb 13

33 vulnerabilities affecting 86 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 25724
Broken 361
Deprecated 155
Ignore 635
Forbidden 0
Restricted 206
No CDROM 87
Vulnerable 59
Expired 68
Set to expire 136
Interactive 0
new 24 hours 5
new 48 hours9
new 7 days24
new fortnight50
new month128

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.