Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-4616

Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.

Published

2017-08-24T20:29:00.173

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 5.9 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-129

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	python	python	< 2.7.7	Yes
Application	python	python	< 3.2.6	Yes
Application	python	python	< 3.3.6	Yes
Application	python	python	< 3.4.1	Yes
Application	simplejson_project	simplejson	< 2.6.1	Yes
Operating System	opensuse	opensuse	13.1	Yes
Operating System	opensuse_project	opensuse	12.3	Yes

References

http://bugs.python.org/issue21529 Issue Tracking, Vendor Advisory ([email protected])
http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.html Mailing List, Third Party Advisory ([email protected])
http://openwall.com/lists/oss-security/2014/06/24/7 Mailing List, Third Party Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2015-1064.html Third Party Advisory ([email protected])
http://www.securityfocus.com/bid/68119 Third Party Advisory, VDB Entry ([email protected])
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752395 Issue Tracking, Mailing List, Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=1112285 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://hackerone.com/reports/12297 Exploit, Patch, Third Party Advisory ([email protected])
https://security.gentoo.org/glsa/201503-10 Patch, Third Party Advisory, VDB Entry ([email protected])
http://bugs.python.org/issue21529 Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2014/06/24/7 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1064.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/68119 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752395 Issue Tracking, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=1112285 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://hackerone.com/reports/12297 Exploit, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201503-10 Patch, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)