Home page logo
/

oss-sec logo oss-sec mailing list archives

Re: CVE Request -- python (SimpleXMLRPCServer): DoS (excessive CPU usage) via malformed XML-RPC / HTTP POST request
From: David Malcolm <dmalcolm () redhat com>
Date: Tue, 14 Feb 2012 10:37:09 -0500

On Tue, 2012-02-14 at 12:13 +0100, Jan Lieskovsky wrote:
Hello vendors,

   just FYI, this issue affected also upstream
PyPy v1.6 and v1.8 versions. Relevant upstream bug
being here:
https://bugs.pypy.org/issue1047
...and almost certainly 1.7 also, probably earlier versions also: 1.6
and 1.8 were the only versions I had to hand and checked.

[PyPy embeds a copy of CPython's standard library, which it mostly uses
as is, overriding a few things here and there]



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]