VDB

GCVE-110-MAGEIA-2014-85

GCVE-110-MAGEIA-2014-85
Advisory Published
Vulnetix · Advisory published February 19, 2014
Updated python and python3 packages fix security vulnerabilities: A vulnerability was reported in Python's socket module, due to a boundary error within the sock_recvfrom_into() function, which could be exploited to cause a buffer overflow. This could be used to crash a Python application that uses the socket.recvfrom_info() function or, possibly, execute arbitrary code with the permissions of the user running vulnerable Python code (CVE-2014-1912). This updates the python package to version 2.7.6, which fixes several other bugs, including denial of service flaws due to unbound readline() calls in the ftplib and nntplib modules (CVE-2013-1752). The python3 package has been patched to fix the CVE-2014-1912 issue.

Affected Products

VendorProductVersionsPlatforms
Salesforceflow
Mageiapython30 (affected), 3.3.0-4.6.mga3 (unaffected), 0 (affected), 3.3.0-4.6.mga3 (unaffected)
Mageiamageia-doc0 (affected), 4.5-2.2.mga4 (unaffected)
Cloudflarepages
Mageiapython30 (affected), 3.3.2-13.1.mga4 (unaffected), 3.3.2-13.1.mga4 (unaffected), 0 (affected)
Mageiapython0 (affected), 2.7.6-1.mga4 (unaffected), 0 (affected), 2.7.6-1.mga4 (unaffected)
Mageiapython0 (affected), 2.7.6-1.mga3 (unaffected), 0 (affected), 2.7.6-1.mga3 (unaffected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›