PT-2008-4561 · Python+2 · Python+2

Publicado

2008-08-01

Atualizado

2024-06-15

CVE-2008-3142

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Python versions 2.5.2 and earlier

Description: The issue is related to multiple buffer overflows that occur during Unicode string processing. This happens due to incorrect memory allocation when handling long strings, which is associated with the unicode resize function and the PyMem RESIZE macro. The impact can include a denial of service (crash) or other unspecified effects.

Recommendations: For Python versions 2.5.2 and earlier, consider updating to a newer version to mitigate the risk, as the issue is related to the handling of Unicode strings and memory allocation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-120

Identificadores relacionados

CVE-2008-3142

DSA-1667-1

DTSA-157-1

OPENSUSE-SU-2024:11202-1

PSF-2008-6

RHSA-2009:1176

RHSA-2009:1177

RHSA-2009:1178

RHSA-2009_1176

RHSA-2009_1177

SUSE-SU-2020:0234-1

Produtos afetados

Python

Red Hat

Suse

PT-2008-4561 · Python+2 · Python+2

CVE-2008-3142

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 194