Advisories ยป MGASA-2014-0139

Updated python package fixes security vulnerabilities

Publication date: 24 Mar 2014
Modification date: 24 Mar 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2013-1752 , CVE-2013-1753

Description

Denial of service flaws due to unbound readline() calls in the imaplib,
poplib, and smtplib modules (CVE-2013-1752).

A gzip bomb and unbound read denial of service flaw in python XMLRPC library
(CVE-2013-1753).
                

References

SRPMS

4/core

3/core