-
Notifications
You must be signed in to change notification settings - Fork 2
/
PSF-2017-6.json
44 lines (44 loc) · 1.12 KB
/
PSF-2017-6.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
{
"modified": "2023-02-16T00:00:00Z",
"published": "2017-11-17T00:00:00Z",
"schema_version": "1.5.0",
"id": "PSF-2017-6",
"aliases": [
"CVE-2017-1000158"
],
"summary": "PyString_DecodeEscape integer overflow",
"details": "CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)",
"affected": [
{
"ranges": [
{
"type": "GIT",
"events": [
{
"introduced": "0"
},
{
"fixed": "6c004b40f9d51872d848981ef1a18bb08c2dfc42"
},
{
"fixed": "c3c9db89273fabc62ea1b48389d9a3000c1c03ae"
},
{
"fixed": "fd8614c5c5466a14a945db5b059c10c0fb8f76d9"
}
],
"repo": "https://github.com/python/cpython"
}
]
}
],
"database_specific": {
"cwe_ids": []
},
"references": [
{
"type": "REPORT",
"url": "https://bugs.python.org/issue30657"
}
]
}