Your submission was sent successfully! Close

CVE-2008-2315

Published: 1 August 2008

Multiple integer overflows in Python 2.5.2 and earlier allow context-dependent attackers to have an unknown impact via vectors related to the (1) stringobject, (2) unicodeobject, (3) bufferobject, (4) longobject, (5) tupleobject, (6) stropmodule, (7) gcmodule, and (8) mmapmodule modules. NOTE: The expandtabs integer overflows in stringobject and unicodeobject in 2.5.2 are covered by CVE-2008-5031.

Priority

Low

Status

Package Release Status
python2.4
Launchpad, Ubuntu, Debian
dapper
Released (2.4.3-0ubuntu6.2)
feisty
Released (2.4.4-2ubuntu7.2)
gutsy
Released (2.4.4-6ubuntu4.2)
hardy
Released (2.4.5-1ubuntu4.1)
upstream
Released (2.4.5-5)
Patches:
upstream: http://svn.python.org/view?rev=61345&view=rev

python2.5
Launchpad, Ubuntu, Debian
dapper Does not exist

feisty
Released (2.5.1-0ubuntu1.2)
gutsy
Released (2.5.1-5ubuntu5.2)
hardy
Released (2.5.2-2ubuntu4.1)
upstream
Released (2.5.2-10)
Patches:

upstream: http://svn.python.org/view?rev=65261&view=rev