vulnerability
Oracle Linux: CVE-2014-4616: ELSA-2015-2101: python security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
5 | (AV:N/AC:H/Au:N/C:C/I:N/A:N) | Aug 24, 2017 | Oct 16, 2024 | Dec 17, 2024 |
Severity
5
CVSS
(AV:N/AC:H/Au:N/C:C/I:N/A:N)
Published
Aug 24, 2017
Added
Oct 16, 2024
Modified
Dec 17, 2024
Description
Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.
Solution(s)
oracle-linux-upgrade-pythonoracle-linux-upgrade-python27oracle-linux-upgrade-python27-pythonoracle-linux-upgrade-python27-python-debugoracle-linux-upgrade-python27-python-develoracle-linux-upgrade-python27-python-libsoracle-linux-upgrade-python27-python-piporacle-linux-upgrade-python27-python-setuptoolsoracle-linux-upgrade-python27-python-simplejsonoracle-linux-upgrade-python27-python-testoracle-linux-upgrade-python27-python-toolsoracle-linux-upgrade-python27-python-wheeloracle-linux-upgrade-python27-runtimeoracle-linux-upgrade-python27-scldeveloracle-linux-upgrade-python27-tkinteroracle-linux-upgrade-python-debugoracle-linux-upgrade-python-develoracle-linux-upgrade-python-libsoracle-linux-upgrade-python-testoracle-linux-upgrade-python-toolsoracle-linux-upgrade-tkinter

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.