CVE Vulnerabilities

CVE-2008-5031

Published: Nov 10, 2008 | Modified: Oct 25, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.

Affected Software

Name Vendor Start Version End Version
Python Python 2.5.1 2.5.1
Python Python 2.4.6 2.4.6
Python Python 2.2.3 2.2.3
Python Python 2.3.7 2.3.7

References