| non port: lang/python25/files/patch-lib-test_test_hashlib.py |
|
SVNWeb
|
Number of commits found: 3 |
|
Tue, 17 Feb 2009
|
[ 08:29 miwi  ]  (Only the first 10 of 21 ports in this commit are shown above.  )
- Remove 0 byte patches
Reported by: Gej
|
|
Mon, 16 Feb 2009
|
[ 23:32 miwi ] (Only the first 10 of 29 ports in this commit are shown above. )
- Update to python 2.5.4 and python 2.6.1
Reviewed by: perky | lwhsu
Tested with: exp-run via pav
|
|
Mon, 8 Sep 2008
|
[ 00:14 miwi ] (Only the first 10 of 20 ports in this commit are shown above. )
- Security fixes
Multiple vulnerabilities:
1) Various integer overflow errors exist in core modules e.g.
stringobject,
unicodeobject, bufferobject, longobject, tupleobject, stropmodule,
gcmodule, mmapmodule.
2) An integer overflow in the hashlib module can lead to an unreliable
cryptographic digest results.
3) Integer overflow errors in the processing of unicode strings can be
exploited to cause
buffer overflows on 32-bit systems.
4) An integer overflow exists in the PyOS_vsnprintf() function on
architectures that do not
have a "vsnprintf()" function.
5) An integer underflow error in the PyOS_vsnprintf() function when
passing zero-length strings
can lead to memory corruption.
PR: 127172 (based on)
Submitted by: bf <bf2006a@yahoo.com>
Obtained from: python svn
Security: CVE-2008-2315, CVE-2008-2316, CVE-2008-3142, CVE-2008-3144,
CVE-2008-3143. (vuxml come later)
|
Number of commits found: 3 |
As an Amazon Associate I earn from qualifying purchases.