Описание
Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2.4.3-0ubuntu6.3 |
| devel | not-affected | 2.4.6-1ubuntu3 |
| hardy | released | 2.4.5-1ubuntu4.2 |
| intrepid | released | 2.4.5-5ubuntu1.1 |
| jaunty | not-affected | 2.4.6-1ubuntu3 |
| upstream | released | 2.4.6-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.5.4-1ubuntu4 |
| gutsy | ignored | end of life, was needed |
| hardy | not-affected | 2.5.2-2ubuntu4.1 |
| intrepid | not-affected | 2.5.2-11.1ubuntu1 |
| jaunty | not-affected | 2.5.4-1ubuntu4 |
| upstream | needs-triage |
Показывать по
EPSS
10 Critical
CVSS2
Связанные уязвимости
Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.
Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.
Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, all ...
Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.
EPSS
10 Critical
CVSS2