CVE-2014-1912

EPSS 34.0%

Published: 3/1/2014Modified: 4/28/2026

Description

Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code via a crafted string.

Affected packages (1)

Debian/python2.7from 0, < 2.7.6-6

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-1912