Oracle Solaris Third-Party Patch Update : python (cve_2014_7185_integer_overflow)
Medium Nessus Plugin ID 80750
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent attackers to obtain sensitive information from process memory via a large size and offset in a 'buffer' function. (CVE-2014-7185)
SolutionUpgrade to Solaris 188.8.131.52.0.