24469 2010-11-01 10:27:54 +0300 CVE-2010-3493: smtpd module denial of service vulnerabilities 2015-11-13 09:26:49 +0300 1 1 4 Development Sisyphus python-modules unstable all Linux CLOSED FIXED http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3493 security P3 blocker --- 1 crux nobody cow evg george glebfm imz real.altlinux.org qa-sisyphus oldest_to_newest 114657 0 crux 2010-11-01 10:27:54 +0300 Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error fixed in r84289: http://svn.python.org/view?rev=84289&view=rev (not yet backported to 2.6) 119504 1 real.altlinux.org 2011-03-26 19:22:34 +0300 "not yet backported to 2.6" А когда и где будет? 153676 2 evg 2015-11-13 09:26:41 +0300 Я так понимаю, в 2.7 уже починено.