SB2014010612 - Gentoo update for Python

Description

This security bulletin contains information about 7 secuirty vulnerabilities.

1) Input validation error (CVE-ID: CVE-2010-1634)

The vulnerability allows context-dependent attackers to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow.

2) Input validation error (CVE-ID: CVE-2010-3492)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.

3) Race condition (CVE-ID: CVE-2010-3493)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error, a related issue to CVE-2010-3492.

4) Information disclosure (CVE-ID: CVE-2011-1015)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The is_cgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / (slash) character at the beginning of the URI.

5) Resource management error (CVE-ID: CVE-2012-0845)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an XML-RPC POST request that contains a smaller amount of data than specified by the Content-Length header.

6) Cryptographic issues (CVE-ID: CVE-2012-1150)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

7) Resource management error (CVE-ID: CVE-2013-2099)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

Remediation

Install update from vendor's website.

References

• https://security.gentoo.org/glsa/201401-04