Summary
Ubuntu Update for Linux kernel vulnerabilities USN-1314-1
Solution
Please Install the Updated Packages.
Insight
Giampaolo Rodola discovered that the smtpd module in Python 3 did not properly handle certain error conditions. A remote attacker could exploit this to cause a denial of service via daemon outage. This issue only affected Ubuntu 10.04 LTS. (CVE-2010-3493)
Niels Heinen discovered that the urllib module in Python 3 would process Location headers that specify a <A HREF='file://'>file://</A> URL. A remote attacker could use this to obtain sensitive information or cause a denial of service via resource consumption. (CVE-2011-1521)
Affected
python3.1 on Ubuntu 11.04 ,
Ubuntu 10.10 ,
Ubuntu 10.04 LTS
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2010-3493, CVE-2011-1521 -
CVSS Base Score: 6.4
AV:N/AC:L/Au:N/C:P/I:N/A:P
Related Vulnerabilities