Table of Contents

Public Date:
455018: CVE-2008-3144 python: Potential integer underflow and overflow in the PyOS_vsnprintf C API function

The MITRE CVE dictionary describes this issue as:

Multiple integer overflows in the PyOS_vsnprintf function in Python/mysnprintf.c in Python 2.5.2 and earlier allow context-dependent attackers to cause a denial of service (memory corruption) or have unspecified other impact via crafted input to string formatting operations. NOTE: the handling of certain integer values is also affected by related integer underflows and an off-by-one error.

Find out more about CVE-2008-3144 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (python) RHSA-2009:1178 2009-07-27
Red Hat Enterprise Linux 4 (python) RHSA-2009:1177 2009-07-27
Red Hat Enterprise Linux 5 (python) RHSA-2009:1176 2009-07-27
Last Modified

CVE description copyright © 2017, The MITRE Corporation