Description
mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory.
References (13)
Core 13
Core References
Patch x_refsource_confirm
http://svn.apache.org/viewvc/httpd/mod_python/trunk/src/filterobject.c?r1=102649&r2=103561&pathrev=103561
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/httpd-python-dev/200404.mbox/%3cEB279100-9000-11D8-8B4E-000A95B0D772%40pixar.com%3e
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/httpd-python-dev/200404.mbox/%3cCD485B27-8F3E-11D8-934B-000A95B0D772%40pixar.com%3e
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/24424
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-430-1
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/462185/100/0/threaded
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/httpd-python-dev/200404.mbox/%3c6DCA8C14-8FFA-11D8-8B4E-000A95B0D772%40pixar.com%3e
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0846
Patch x_refsource_confirm
https://launchpad.net/bugs/89308
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-1105
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/24418
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/22849
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/14751
Scores
EPSS
0.0427
EPSS Percentile
90.0%
Details
Status
published
Products (1)
apache/mod_python
< 3.1.4
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026