** Description changed: As reported upstream, the JSON module of Python is vulnerable for reading arbitrary process memory. Please apply the patch as included in the upstream bug report: http://bugs.python.org/issue21529 - I'm not aware of any CVE assigned to this bug. + CVE-2014-4616 is assigned: + https://security-tracker.debian.org/tracker/CVE-2014-4616 Patch is applied upstream in 2.7.7, so this only applies to current Ubuntu releases.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1333396 Title: JSON module: reading arbitrary process memory To manage notifications about this bug go to: https://bugs.launchpad.net/python/+bug/1333396/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
