Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-1000158

Опубликовано: 17 нояб. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5
CVSS3: 9.8

Описание

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

РелизСтатусПримечание
artful

not-affected

2.7.14-2ubuntu2
bionic

not-affected

devel

DNE

disco

not-affected

eoan

not-affected

esm-apps/focal

not-affected

esm-apps/jammy

not-affected

esm-infra-legacy/trusty

not-affected

2.7.6-8ubuntu0.4
esm-infra/bionic

not-affected

esm-infra/xenial

not-affected

2.7.12-1ubuntu0~16.04.2

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

3.4.3-1ubuntu1~14.04.6
esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

3.5.2-2ubuntu0~16.04.4~14.04.1
esm-infra/focal

DNE

esm-infra/xenial

not-affected

3.5.2-2ubuntu0~16.04.4
focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

not-affected

code not present
bionic

not-affected

code not present
devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

code not present
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

not-affected

code not present
bionic

not-affected

code not present
devel

DNE

disco

not-affected

code not present
eoan

not-affected

code not present
esm-apps/bionic

not-affected

code not present
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 85%
0.02492
Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-1000158

CVSS3: 8.1
redhat
около 8 лет назад

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

nvd логотип

CVE-2017-1000158

CVSS3: 9.8
nvd
больше 7 лет назад

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

debian логотип

CVE-2017-1000158

CVSS3: 9.8
debian
больше 7 лет назад

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow ...

suse-cvrf логотип

SUSE-SU-2018:0768-1

suse-cvrf
больше 7 лет назад

Security update for python

github логотип

GHSA-r68f-4xcm-3xr6

CVSS3: 9.8
github
около 3 лет назад

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

EPSS

Процентиль: 85%
0.02492
Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3