Summary
The remote host is missing an update to python2.4
announced via advisory DSA 1197-1.
Benjamin C. Wiley Sittler discovered that the repr() of the Python interpreter allocates insufficient memory when parsing UCS-4 Unicode strings, which might lead to execution of arbitrary code through a buffer overflow.
Solution
For the stable distribution (sarge) this problem has been fixed in version 2.4.1-2sarge1. Due to build problems this update lacks fixed packages for the m68k architecture. Once they are sorted out, binaries for m68k will be released.
For the unstable distribution (sid) this problem has been fixed in version 2.4.4-1.
We recommend that you upgrade your Python 2.4 packages.
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201197-1
Severity
Classification
-
CVE CVE-2006-4980 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities