{"id":"UBUNTU-CVE-2013-1752","details":"Rejected reason: Various versions of Python do not properly restrict readline calls, which allows remote attackers to cause a denial of service (memory consumption) via a long string, related to (1) httplib - fixed in 2.7.4, 2.6.9, and 3.3.3; (2) ftplib - fixed in 2.7.6, 2.6.9, 3.3.3; (3) imaplib - not yet fixed in 2.7.x, fixed in 2.6.9, 3.3.3; (4) nntplib - fixed in 2.7.6, 2.6.9, 3.3.3; (5) poplib - not yet fixed in 2.7.x, fixed in 2.6.9, 3.3.3; and (6) smtplib - not yet fixed in 2.7.x, fixed in 2.6.9, not yet fixed in 3.3.x. NOTE: this was REJECTed because it is incompatible with CNT1 \"Independently Fixable\" in the CVE Counting Decisions","modified":"2026-02-04T03:06:26.784105Z","published":"2013-12-26T00:00:00Z","related":["USN-2653-1"],"upstream":["CVE-2013-1752"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2013-1752"},{"type":"REPORT","url":"http://marc.info/?l=oss-security&m=138816139322814&w=2"},{"type":"REPORT","url":"http://marc.info/?l=oss-security&m=138784213903127&w=2"},{"type":"REPORT","url":"http://www.openwall.com/lists/oss-security/2013/12/26"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2653-1"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2013-1752"}],"affected":[{"package":{"name":"python2.7","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/python2.7@2.7.6-8ubuntu0.2?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.7.6-8ubuntu0.2"}]}],"versions":["2.7.5-8ubuntu3","2.7.5-8ubuntu4","2.7.6-2","2.7.6-2ubuntu1","2.7.6-3","2.7.6-3ubuntu1","2.7.6-4","2.7.6-4ubuntu1","2.7.6-5","2.7.6-7","2.7.6-8"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"idle-python2.7"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"libpython2.7"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"libpython2.7-dev"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"libpython2.7-minimal"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"libpython2.7-stdlib"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"libpython2.7-testsuite"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"python2.7"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"python2.7-dev"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"python2.7-examples"},{"binary_version":"2.7.6-8ubuntu0.2","binary_name":"python2.7-minimal"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-1752.json"}}],"schema_version":"1.7.3","severity":[{"type":"Ubuntu","score":"low"}]}