Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-11-10T16:00:00

Updated: 2024-08-07T10:40:17.351Z

Reserved: 2008-11-10T00:00:00

Link: CVE-2008-5031

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2008-11-10T16:15:12.140

Modified: 2024-11-21T00:53:07.463

Link: CVE-2008-5031

cve-icon Redhat

Severity : Low

Publid Date: 2008-10-19T00:00:00Z

Links: CVE-2008-5031 - Bugzilla