VDB
GCVE-110-MAGEIA-2014-85
GCVE-110-MAGEIA-2014-85
Advisory Published
Updated python and python3 packages fix security vulnerabilities:
A vulnerability was reported in Python's socket module, due to a boundary
error within the sock_recvfrom_into() function, which could be exploited to
cause a buffer overflow. This could be used to crash a Python application
that uses the socket.recvfrom_info() function or, possibly, execute arbitrary
code with the permissions of the user running vulnerable Python code
(CVE-2014-1912).
This updates the python package to version 2.7.6, which fixes several other
bugs, including denial of service flaws due to unbound readline() calls in
the ftplib and nntplib modules (CVE-2013-1752).
The python3 package has been patched to fix the CVE-2014-1912 issue.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Salesforce | flow | — | — |
| Mageia | python3 | 0 (affected), 3.3.0-4.6.mga3 (unaffected), 0 (affected), 3.3.0-4.6.mga3 (unaffected) | — |
| Mageia | mageia-doc | 0 (affected), 4.5-2.2.mga4 (unaffected) | — |
| Cloudflare | pages | — | — |
| Mageia | python3 | 0 (affected), 3.3.2-13.1.mga4 (unaffected), 3.3.2-13.1.mga4 (unaffected), 0 (affected) | — |
| Mageia | python | 0 (affected), 2.7.6-1.mga4 (unaffected), 0 (affected), 2.7.6-1.mga4 (unaffected) | — |
| Mageia | python | 0 (affected), 2.7.6-1.mga3 (unaffected), 0 (affected), 2.7.6-1.mga3 (unaffected) | — |
References
Browse GCVE Records
72,664 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.