VulnerableCode Package Details - pkg:rpm/redhat/python@2.3.4-14.10?arch=el4

Search for packages

Vulnerability	Summary	Fixed by
VCID-4zzy-q5zp-jkgm Aliases: CVE-2009-3720	A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.	There are no reported fixed by versions.
VCID-a7h6-8ece-kqec Aliases: CVE-2010-1634	Multiple vulnerabilities have been found in Python, the worst of which allow remote attackers to cause a Denial of Service condition.	There are no reported fixed by versions.
VCID-shaf-tb78-c3fp Aliases: CVE-2011-1015	Multiple vulnerabilities have been found in Python, the worst of which allow remote attackers to cause a Denial of Service condition.	There are no reported fixed by versions.
VCID-vdjq-xqbj-guh9 Aliases: CVE-2010-3493	Multiple vulnerabilities have been found in Python, the worst of which allow remote attackers to cause a Denial of Service condition.	There are no reported fixed by versions.
VCID-wa9f-nvnp-euce Aliases: CVE-2010-2089	Multiple vulnerabilities have been found in Python, the worst of which allow remote attackers to cause a Denial of Service condition.	There are no reported fixed by versions.
VCID-xdsh-83s2-wyd6 Aliases: CVE-2011-1521	urllib2): Improper management of ftp:// and file:// URL schemes (Issue #11662)	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-4zzy-q5zp-jkgm
Aliases:
CVE-2009-3720

A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.