Python · Python · CVE-2008-1887
**Name of the Vulnerable Software and Affected Versions**
Python versions 2.5.2 and earlier
**Description**
The issue allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the `PyString FromStringAndSize` function. This function allocates less memory than expected when `assert()` is disabled, triggering a buffer overflow.
**Recommendations**
For Python versions 2.5.2 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.