CVE-2008-5031

Name of the Vulnerable Software and Affected Versions Python versions 2.2.3 through 2.5.1 Python version 2.6

Description The issue is caused by multiple integer overflows that allow context-dependent attackers to have an unknown impact. This occurs when a large integer value is passed in the tabsize argument to the expandtabs method. The affected functions are string expandtabs in Objects/stringobject.c and unicode expandtabs in Objects/unicodeobject.c.

Recommendations For Python versions 2.2.3 through 2.5.1, and version 2.6, consider restricting the use of the expandtabs method with large integer values in the tabsize argument until a patch is available. As a temporary workaround, avoid using large integer values for the tabsize argument in the affected expandtabs method.