Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-09-18T22:00:00
Updated: 2024-08-07T15:17:27.603Z
Reserved: 2007-09-18T00:00:00
Link: CVE-2007-4965
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-09-18T22:17:00.000
Modified: 2024-11-21T00:36:49.907
Link: CVE-2007-4965
Redhat