Debian : Security Vulnerabilities, CVEs, Published In April 2008 (Overflow)
Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.
Max CVSS
9.3
EPSS Score
0.47%
Published
2008-04-18
Updated
2022-06-27
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.
Max CVSS
7.5
EPSS Score
10.08%
Published
2008-04-10
Updated
2022-07-05
2 vulnerabilities found