PT-2008-3806 · Python+2 · Python+2

Published

2008-08-01

Updated

2024-06-15

CVE-2008-2315

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Python versions 2.5.2 and earlier

Description: The issue involves multiple integer overflows in various components of Python, including the stringobject, unicodeobject, bufferobject, longobject, tupleobject, and the stropmodule, gcmodule, and mmapmodule modules. These overflows can be exploited by context-dependent attackers to have an unknown impact.

Recommendations: For Python versions 2.5.2 and earlier, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

CVE-2008-2315

DSA-1667-1

DTSA-157-1

OPENSUSE-SU-2024:11202-1

PSF-2008-4

RHSA-2009:1176

RHSA-2009:1177

RHSA-2009:1178

RHSA-2009_1176

RHSA-2009_1177

SUSE-SU-2020:0234-1

Affected Products

Python

Red Hat

Suse

PT-2008-3806 · Python+2 · Python+2

CVE-2008-2315

Weakness Enumeration

Related Identifiers

Affected Products

References · 196