CVE-2007-4965
The MITRE CVE dictionary describes this issue as:
Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.
Find out more about CVE-2007-4965 from the MITRE CVE dictionary dictionary and NIST NVD.
Statement
Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=295971
The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/
Red Hat Security Errata
| Platform | Errata | Release Date |
|---|---|---|
| Red Hat Satellite 5.1 (RHEL v.4 AS) (rhn-solaris-bootstrap) | RHSA-2008:0629 | 2008-08-13 |
| Red Hat Enterprise Linux 5 (python) | RHSA-2009:1176 | 2009-07-27 |
| Red Hat Enterprise Linux 3 (python) | RHSA-2007:1076 | 2007-12-10 |
| Red Hat Satellite 5.0 (RHEL v.4 AS) (rhn-solaris-bootstrap) | RHSA-2008:0264 | 2008-05-20 |
| Red Hat Satellite v 4.2 (RHEL v.3 AS) | RHSA-2008:0525 | 2008-06-30 |
| Red Hat Satellite v 4.2 (RHEL v.4 AS) | RHSA-2008:0525 | 2008-06-30 |
| Red Hat Enterprise Linux 4 (python) | RHSA-2007:1076 | 2007-12-10 |
CVE description copyright © 2017, The MITRE Corporation