Python Software Foundation » Python » 2.4.4 : Security Vulnerabilities, CVEs, Published In 2008 (Denial of service)
Multiple integer overflows in the PyOS_vsnprintf function in Python/mysnprintf.c in Python 2.5.2 and earlier allow context-dependent attackers to cause a denial of service (memory corruption) or have unspecified other impact via crafted input to string formatting operations. NOTE: the handling of certain integer values is also affected by related integer underflows and an off-by-one error.
Max CVSS
5.0
EPSS Score
1.07%
Published
2008-08-01
Updated
2023-08-02
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965.
Max CVSS
6.8
EPSS Score
0.59%
Published
2008-04-22
Updated
2023-08-02
2 vulnerabilities found