CVE-2008-2316

Impact:
Low
Public Date:
2008-07-24
CWE:
CWE-190
Bugzilla:
457733: CVE-2008-2316 python: integer overflow in hashlib module

The MITRE CVE dictionary describes this issue as:

Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and earlier might allow context-dependent attackers to defeat cryptographic digests, related to "partial hashlib hashing of data exceeding 4GB."

Find out more about CVE-2008-2316 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Not vulnerable. This issue did not affect the versions of python as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5. Affected module was only introduced upstream in python 2.5.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.