Summary: | <dev-python/psutil-5.6.7: double free because of refcount mishandling (CVE-2019-18874) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | mgorny, python |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/giampaolo/psutil/pull/1616 | ||
Whiteboard: | B2 [noglsa cve] | ||
Package list: |
dev-python/psutil-5.6.7
|
Runtime testing required: | No |
Description
GLSAMaker/CVETool Bot
2019-12-03 00:32:26 UTC
Keywords for dev-python/psutil: | | u | | a a a p s r | n | | l m r i p h m s p i m | e u s | r | p d a m a p c x p 6 3 a s i | a s l | e | h 6 r 6 6 p 6 8 p 8 9 s r c p | p e o | p | a 4 m 4 4 c 4 6 a k 0 h c v s | i d t | o ---------+-------------------------------+-------+------- 5.4.8 | ~ ~ ~ ~ ~ ~ ~ ~ ~ o ~ o ~ o o | 7 # 0 | gentoo 5.5.0 | + + + + + + + + ~ o + o + o o | 7 o | gentoo 5.6.0 | ~ + + ~ ~ + + + ~ o + o ~ o o | 7 o | gentoo [I]5.6.5 | ~ ~ ~ ~ ~ ~ ~ ~ ~ o ~ o ~ o o | 7 # | gentoo 5.6.7 | ~ ~ ~ ~ ~ ~ ~ ~ ~ o ~ o ~ o o | 7 o | gentoo amd64 stable x86 stable sparc stable ppc64 stable ia64 stable arm64 stable s390 stable ppc stable arm stable Tree is clean. Not releasing a GLSA for this one: To trigger this flaw, an attacker would require privileges to modify network address, manipulate users, network interfaces and/or disk partitions. All if this require super user privileges already. Repository is clean, all done. |