From owner-freebsd-python@FreeBSD.ORG Fri Apr 27 02:01:52 2012 Return-Path: Delivered-To: python@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A0A9D106564A for ; Fri, 27 Apr 2012 02:01:52 +0000 (UTC) (envelope-from lists@eitanadler.com) Received: from mail-wg0-f50.google.com (mail-wg0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id E3D438FC08 for ; Fri, 27 Apr 2012 02:01:51 +0000 (UTC) Received: by wgbds12 with SMTP id ds12so195197wgb.31 for ; Thu, 26 Apr 2012 19:01:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=eitanadler.com; s=0xdeadbeef; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type:content-transfer-encoding; bh=dYj4Agfn5uXxToj69jQbkJVpY7/lQ6zeZh1bWjhIx0o=; b=YoZoTkjcs03JkiZ1GvZdiGqE9/bEEZTjaye/AU3hpGJl+K9vfOuZhiZzm01ESjEHum 513G12ldIGe6ukMQAv0hA+OI+IFsGb8U36ridnxXtxvCNg/7bbADh3wztYX464DJhZd3 QOg+4faH5AEKyQu+1d+vwH5ntv2JxWp/1xQSs= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type:content-transfer-encoding:x-gm-message-state; bh=dYj4Agfn5uXxToj69jQbkJVpY7/lQ6zeZh1bWjhIx0o=; b=WLNflALMb8s8yhiQV36kuQNyV7bd61wDA1PNSOP3oWJMdu59sEMYvP1QhjIrEcg0d4 0KUebFc56N436LZLivsEENuhYFb561o/f3u4srHGMIIqlNrHbvPoK/WGrubpkOq97LaP wW2YvHGOoeCbuV5ufzDZycHVtKudAAWdV9VB09iGQyFMd++LlyulLasOsuuitc7OeP/d 5rhS/TPl4ZU8mJFit7vyqDYeizLbd3BtmAIrgrqgSgEcMEMg4oYvsRv8I7SzBNThrMe+ h/Fb7GR8Mu7QTxjDanJYYgbJw8Y7Pc1MnU1ceKMEf2IqflVAd8W7IGYBytvb63MkNmGK Lv/w== Received: by 10.180.83.72 with SMTP id o8mr1345092wiy.5.1335492111086; Thu, 26 Apr 2012 19:01:51 -0700 (PDT) MIME-Version: 1.0 Received: by 10.223.73.195 with HTTP; Thu, 26 Apr 2012 19:01:20 -0700 (PDT) In-Reply-To: <4F979B38.4000307@redhat.com> References: <4F979B38.4000307@redhat.com> From: Eitan Adler Date: Thu, 26 Apr 2012 22:01:20 -0400 Message-ID: To: python@freebsd.org Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Gm-Message-State: ALoCoQmqlpY3Z/i8XykgLWW4U138Ce9cnJeRN/Vg6K07CFntwb3BoW3LVcoMneenjI4+uvT4WCub Cc: ports-security@freebsd.org Subject: Fwd: [oss-security] CVE Request: Python 3.2/3.3 utf-16 decoder unicode_decode_call_errorhandler aligned_end is not updated X-BeenThere: freebsd-python@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: FreeBSD-specific Python issues List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Apr 2012 02:01:52 -0000 Is anyone working on updating python and/or writing a vuxml report for this= ? CVE CVE-2012-2135 ---------- Forwarded message ---------- From: Kurt Seifried Date: 25 April 2012 02:35 Subject: [oss-security] CVE Request: Python 3.2/3.3 utf-16 decoder unicode_decode_call_errorhandler aligned_end is not updated To: "oss >> \"oss-security@lists.openwall.com\"" -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Python 3.2/3.3 utf-16 decoder unicode_decode_call_errorhandler aligned_end is not updated does not appear to affect Python 2.x memory leak/crashes/etc. http://bugs.python.org/issue14579 Author: Serhiy Storchaka (storchaka) =C2=A0 =C2=A0Date: 2012-04-14 18:46 In the utf-16 decoder after calling unicode_decode_call_errorhandler aligned_end is not updated. This may potentially cause data leaks, memory damage, and crash. The bug introduced by implementation of the issue #4868. In a similar situation in the utf-8 decoder aligned_end is updated. =3D=3D=3D=3D=3D=3D=3D=3D More discussion and links to the patches/etc. in the bug. - -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJPl5s3AAoJEBYNRVNeJnmTSxEP/0BAZDzBuJC6jNAUBxp8BL0j a1NXA3N8JFNkHh4u0/G4VHlYBndMIDimfXf6jwd2mj37o9NpBG2prOUpioXXMZ/K LHhlOZHGs9jZLBzdoXtEZi1CAQptKbfOPQHbZvi8HkVu7XVXMEckZ5RJaNJ0urjT 7RH3bVD8rV5D+/cqD3Rr67ld6XrM+n2aCsq32vWxUsZUlmjckCPann2Y9kpLEWDQ sG42nf994WSV/h8D6A3U7Rnpw+jQUlmjALmw6AcBAQJtOrBt9OL5BMIEowAIBviY rvFL7GOQGYS1Wn53MVbQTuLjmJX2OEzgfvEdeUbzGNB60/0C13PvSPRqMfG2aLu8 npemlZRv3Lqkufih/pUsRkWUkZJZR7c+VSmFuGlJ+XD2q5LRUVxdOOV5ntdMoQw7 kNfCyPdeMwHoMIFr1xI+z4aZO8nVlyr92SmR1N4nvGSQ/tZjYaa9IoNYCc/13Jm9 aOl6zz8dqmREsImofb4BL4S77/bCaOKmQDuLaghgoOROKDZeeTQ3u1bxGhc9OFXT M3sSMdva9A8ehF2XRqfyw8s1+kx0v/TvOWoWLWwGl8fhJGETMJ/Y4+myxqvUAsf+ RxWhXI0wKaGNzFbtCZ2xrnUxpBJeiE1Agr8rd/+yVbkQBPajAEnisGqzMKPhRqPi E9fe8lgLB0xib5welCIV =3DS2+D -----END PGP SIGNATURE----- --=20 Eitan Adler