Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-1753

The gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP request.

Related bugs and status

CVE-2013-1753 (Candidate) is related to these bugs:

Bug #1264554: python3.4 autopkg test failures

		In	Importance	Status
1264554	python3.4 autopkg test failures	python3.4 (Ubuntu)	High	Fix Released
1264554	python3.4 autopkg test failures	python3.3 (Ubuntu)	High	Won't Fix
1264554	python3.4 autopkg test failures	python3.4 (Ubuntu Trusty)	High	Fix Released

Bug #1348954: update Python3 for trusty

Summary				In	Importance	Status
	1348954	update Python3 for trusty		python3-stdlib-extensions (Ubuntu Trusty)	High	Fix Released
	1348954	update Python3 for trusty		python3.4 (Ubuntu Trusty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugs.python.or...