Vigil@nce - Python: integer overflows of audioop
June 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can generate several integer overflows in the audioop
module of Python, in order to generate a denial of service or to
execute code.
Severity: 2/4
Creation date: 26/05/2010
DESCRIPTION OF THE VULNERABILITY
The audioop module of Python is used to manage audio records.
A malicious audio document generate several integer overflows in
functions of the Modules/audioop.c file:
audioop_adpcm2lin()
audioop_alaw2lin()
audioop_lin2lin()
audioop_ratecv()
audioop_tostereo()
audioop_ulaw2lin()
An attacker can therefore invite the victim to open a malicious
audio file, in order to generate a denial of service or to execute
code, in applications using Python audioop.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Python-integer-overflows-of-audioop-9668