Description
The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.
Remediation
References
Related Vulnerabilities
Apache Tomcat Other Vulnerability (CVE-2007-1355)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5321)
Envoy Proxy CVE-2024-45807 Vulnerability (CVE-2024-45807)
Oracle Database Server CVE-2023-22071 Vulnerability (CVE-2023-22071)
WordPress Plugin Username Changer Multiple Vulnerabilities (1.4)