Table of Contents

Public Date:
443810: CVE-2008-1887 python: PyString_FromStringAndSize does not check for negative size values

The MITRE CVE dictionary describes this issue as:

Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.

Find out more about CVE-2008-1887 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (python) RHSA-2009:1178 2009-07-27
Red Hat Enterprise Linux 4 (python) RHSA-2009:1177 2009-07-27
Red Hat Enterprise Linux 5 (python) RHSA-2009:1176 2009-07-27
Last Modified

CVE description copyright © 2017, The MITRE Corporation