{"id":"PSF-2008-7","summary":"Multiple integer overflows (Google)","details":"Multiple integer overflows in Python before 2.5.2 might allow context-dependent attackers to have an unknown impact via vectors related to (1) Include/pymem.h; (2) _csv.c, (3) _struct.c, (4) arraymodule.c, (5) audioop.c, (6) binascii.c, (7) cPickle.c, (8) cStringIO.c, (9) cjkcodecs/multibytecodec.c, (10) datetimemodule.c, (11) md5.c, (12) rgbimgmodule.c, and (13) stropmodule.c in Modules/; (14) bufferobject.c, (15) listobject.c, and (16) obmalloc.c in Objects/; (17) Parser/node.c; and (18) asdl.c, (19) ast.c, (20) bltinmodule.c, and (21) compile.c in Python/, as addressed by \"checks for integer overflows, contributed by Google.\"","aliases":["CVE-2008-3143"],"modified":"2025-10-09T00:55:34.922485Z","published":"2008-08-01T14:00:00Z","database_specific":{"cwe_ids":[]},"references":[{"type":"REPORT","url":"https://bugs.python.org/issue2620"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/python/cpython","events":[{"introduced":"0"},{"fixed":"83ac0144fa3041556aa4f3952ebd979e0189a19c"},{"fixed":"d492ad80c872d264ed46bec71e31a00f174ac819"}]}],"versions":["v0.9.8","v0.9.9","v1.0.1","v1.0.2","v1.1","v1.1.1","v1.2","v1.2b1","v1.2b2","v1.2b3","v1.2b4","v1.3","v1.3b1","v1.4","v1.4b1","v1.4b2","v1.4b3","v1.5","v1.5.1","v1.5.2","v1.5.2a1","v1.5.2a2","v1.5.2b1","v1.5.2b2","v1.5.2c1","v1.5a1","v1.5a2","v1.5a3","v1.5a4","v1.5b1","v1.5b2","v1.6a1","v1.6a2","v2.0","v2.0b1","v2.0b2","v2.0c1","v2.1","v2.1a1","v2.1a2","v2.1b1","v2.1b2","v2.1c1","v2.1c2","v2.2a3","v2.3c1","v2.3c2","v2.4","v2.4a1","v2.4a2","v2.4a3","v2.4b1","v2.4b2","v2.4c1","v2.5","v2.5.1","v2.5.1c1","v2.5.2","v2.5.2c1","v2.5a0","v2.5a1","v2.5a2","v2.5b1","v2.5b2","v2.5b3","v2.5c1","v2.5c2"],"database_specific":{"vanir_signatures":[{"signature_type":"Function","digest":{"function_hash":"129371260326888024439429000294354857327","length":864},"id":"PSF-2008-7-03b173f5","deprecated":false,"target":{"function":"array_do_extend","file":"Modules/arraymodule.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"29188664103026327195791415922442816004","length":3301},"id":"PSF-2008-7-2389ae3f","deprecated":false,"target":{"function":"PyObject_Malloc","file":"Objects/obmalloc.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"29188664103026327195791415922442816004","length":3301},"id":"PSF-2008-7-3bda2838","deprecated":false,"target":{"function":"PyObject_Malloc","file":"Objects/obmalloc.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"322738304262835127545171492009905373329","length":544},"id":"PSF-2008-7-432fbd63","deprecated":false,"target":{"function":"PyObject_Realloc","file":"Objects/obmalloc.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["76631886376340167263759818300251918270","10035051500106356665378152538840524176","129929392468008705255536532292915123297","79946168674418159284157823205263575497","36091231159959000729079594000798250886","196074055666307018574393325867350588405","253115594655754517654367962970972811364","290981843722033396546202325423402190400","222553037576113584482950720807387631969","95261784800307298348009225093163412036","300130012892131094841599081381557804161","90245544581458979387448307541093572864"]},"id":"PSF-2008-7-49a421e7","deprecated":false,"target":{"file":"Include/pymem.h"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["58027013288148122777808480400174930425","17868168204643322722452678066122624004","13972275095609633596492648217905479701","237851964046125477571794429630103578868","29927111609186784095413827837906772703","221181178599852448716433104056678451510","122431095438608965967189121204146151239"]},"id":"PSF-2008-7-56f6a4af","deprecated":false,"target":{"file":"Modules/selectmodule.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["76631886376340167263759818300251918270","10035051500106356665378152538840524176","129929392468008705255536532292915123297","79946168674418159284157823205263575497","36091231159959000729079594000798250886","196074055666307018574393325867350588405","253115594655754517654367962970972811364","290981843722033396546202325423402190400","222553037576113584482950720807387631969","95261784800307298348009225093163412036","300130012892131094841599081381557804161","90245544581458979387448307541093572864"]},"id":"PSF-2008-7-5d45bab9","deprecated":false,"target":{"file":"Include/pymem.h"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["45816020055143837417155279863777248291","42019008400156896262968361703398908405","63766558865245977377942127136620643822","243316762567641604952487225199587890440","159343402988981235497912055865226875148","26799769990301758573631751445112732231","286610803042492030668774695587065474625","227465643865823051023583867329770206015","287747696901394577294837107119029138105","87597150162049478184639028257870738541","229011610012215087866283252224719247446","92708471802424493296857415274613521281","74713494781512692075598582910331627483","125127792948833555155630193462410099115"]},"id":"PSF-2008-7-6344df52","deprecated":false,"target":{"file":"Modules/arraymodule.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["31219063278697061204945562235717296794","21693359643836096243014226117439161770","330910802725298596812628924195425008279","204428697197501348257849938471679658236","11272477506064746799291469713292264212","14030292194809376229495494403538840374"]},"id":"PSF-2008-7-6e1d1085","deprecated":false,"target":{"file":"Objects/obmalloc.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["58027013288148122777808480400174930425","17868168204643322722452678066122624004","13972275095609633596492648217905479701","237851964046125477571794429630103578868","29927111609186784095413827837906772703","221181178599852448716433104056678451510","122431095438608965967189121204146151239"]},"id":"PSF-2008-7-7f841950","deprecated":false,"target":{"file":"Modules/selectmodule.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["45816020055143837417155279863777248291","42019008400156896262968361703398908405","63766558865245977377942127136620643822","243316762567641604952487225199587890440","20502375945064789480144925552161800568","98031056826669587259366263169196199022","181110903279340029883601321892842828419","10347152808951686773466734885118113339","329574033495684342016229196839677116926","259804108681631252748311288290517633083","238278147463350556886620271453327697477","146968857747339317077276906740022098667","229011610012215087866283252224719247446","92708471802424493296857415274613521281","74713494781512692075598582910331627483","125127792948833555155630193462410099115"]},"id":"PSF-2008-7-9d0b028c","deprecated":false,"target":{"file":"Modules/arraymodule.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"202848641091225117791595636648884152770","length":867},"id":"PSF-2008-7-ad05ad20","deprecated":false,"target":{"function":"array_do_extend","file":"Modules/arraymodule.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"214142833051191940971334054990812270712","length":1364},"id":"PSF-2008-7-ae9c2bdf","deprecated":false,"target":{"function":"al_QueryValues","file":"Modules/almodule.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"338510502873582844535968570518389438428","length":497},"id":"PSF-2008-7-b8472cbe","deprecated":false,"target":{"function":"update_ufd_array","file":"Modules/selectmodule.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"338510502873582844535968570518389438428","length":497},"id":"PSF-2008-7-ba712332","deprecated":false,"target":{"function":"update_ufd_array","file":"Modules/selectmodule.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["31219063278697061204945562235717296794","21693359643836096243014226117439161770","330910802725298596812628924195425008279","204428697197501348257849938471679658236","11272477506064746799291469713292264212","14030292194809376229495494403538840374"]},"id":"PSF-2008-7-ca930f92","deprecated":false,"target":{"file":"Objects/obmalloc.c"},"source":"https://github.com/python/cpython/commit/d492ad80c872d264ed46bec71e31a00f174ac819","signature_version":"v1"},{"signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["323768922892435193892527159473991305901","179614661796924503462341250842102113887","78392702182705331013449208125943446497","53450716785701420358565877546937560556","102559064297545862235805139702840035279","96830878738127991330409716737694984085","235673569860010129495428777260506220945"]},"id":"PSF-2008-7-e945bc3b","deprecated":false,"target":{"file":"Modules/almodule.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"},{"signature_type":"Function","digest":{"function_hash":"322738304262835127545171492009905373329","length":544},"id":"PSF-2008-7-f5cb612a","deprecated":false,"target":{"function":"PyObject_Realloc","file":"Objects/obmalloc.c"},"source":"https://github.com/python/cpython/commit/83ac0144fa3041556aa4f3952ebd979e0189a19c","signature_version":"v1"}],"source":"https://github.com/psf/advisory-database/blob/main/advisories/python/PSF-2008-7.json"}}],"schema_version":"1.7.3"}