vulnerability
Oracle Linux: CVE-2014-4616: ELSA-2015-1064: python27 security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:P/I:N/A:N) | Aug 24, 2017 | Oct 16, 2024 | Dec 3, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Aug 24, 2017
Added
Oct 16, 2024
Modified
Dec 3, 2025
Description
Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.
Solutions
oracle-linux-upgrade-pythonoracle-linux-upgrade-python27oracle-linux-upgrade-python27-pythonoracle-linux-upgrade-python27-python-debugoracle-linux-upgrade-python27-python-develoracle-linux-upgrade-python27-python-libsoracle-linux-upgrade-python27-python-piporacle-linux-upgrade-python27-python-setuptoolsoracle-linux-upgrade-python27-python-simplejsonoracle-linux-upgrade-python27-python-testoracle-linux-upgrade-python27-python-toolsoracle-linux-upgrade-python27-python-wheeloracle-linux-upgrade-python27-runtimeoracle-linux-upgrade-python27-scldeveloracle-linux-upgrade-python27-tkinteroracle-linux-upgrade-python-debugoracle-linux-upgrade-python-develoracle-linux-upgrade-python-libsoracle-linux-upgrade-python-testoracle-linux-upgrade-python-toolsoracle-linux-upgrade-tkinter
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.