Package: python2.5
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for python2.5.
CVE-2008-2316[0]:
| Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and
| earlier might allow context-dependent attackers to
Hi Nico!
> Upstream patch:
> https://bugzilla.redhat.com/attachment.cgi?id=313350
That's the patch proposed by reporter - David Remahl of the Apple
Product Security team, but it does not seem to be applied upstream yet,
either in trunk or 2.5-maint:
http://svn.python.org/view/python/trunk/Module
2 matches
Mail list logo
