Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 83074

Summary: mod_python exploit in 3.1 & 2.7 trees
Product: Gentoo Security Reporter: Davin Boling <davin>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: major CC: python
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
URL: http://www.modpython.org/3.1.4.html
Whiteboard:
Package list:
Runtime testing required: ---

Description Davin Boling 2005-02-23 07:55:49 UTC 
See attached URL. Versions 3.1.4 and 2.7.11 have been released to address this security issue. These new versions only contain a fix for the security issue in question, and offer no new functionality.


An emergency workaround for those who do not wish to wait on the stable ebuilds can be found here:
http://www.modpython.org/pipermail/mod_python/2005-February/017418.html

Reproducible: Always
Steps to Reproduce:
Comment 1 Davin Boling 2005-02-23 07:59:58 UTC 
Should have labelled this as a security issue instead of an ebuild issue. Reassigning.
Comment 2 Matthias Geerdsen (RETIRED) gentoo-dev 2005-02-23 08:33:57 UTC 
This was GLSA 200502-14 with bug 80109.

*** This bug has been marked as a duplicate of 80109 ***