CVE-2008-3143: Integer Overflow
First published: Thu Feb 14 2008(Updated: )
Description of problem: Added checks for integer overflows, contributed by Google. Some are only available if asserts are left in the code, in cases where they can't be triggered from Python code. Proposed upstream patch: <a href="http://svn.python.org/view?rev=60793&view=rev">http://svn.python.org/view?rev=60793&view=rev</a>
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Python Python | <2.5.12 | |
| Python Software Foundation Python | =2.0.1 | |
| Python Software Foundation Python | =2.3.7 | |
| Python Software Foundation Python | =2.4.5 | |
| Python Software Foundation Python | =1.5.2 | |
| Python Software Foundation Python | <=2.5.1 | |
| Python Software Foundation Python | =1.6.1 | |
| Python Software Foundation Python | =2.1.3 | |
| Python Software Foundation Python | =2.2.3 | |
| redhat/python | <0:2.3.4-14.7.el4_8.2 | 0:2.3.4-14.7.el4_8.2 |
| redhat/python | <0:2.4.3-24.el5_3.6 | 0:2.4.3-24.el5_3.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://bugs.gentoo.org/show_bug.cgi?id=232137
- http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
- http://secunia.com/advisories/31332
- http://secunia.com/advisories/31365
- http://secunia.com/advisories/31473
- http://secunia.com/advisories/31518
- http://secunia.com/advisories/31687
- http://secunia.com/advisories/32793
- http://secunia.com/advisories/37471
- http://security.gentoo.org/glsa/glsa-200807-16.xml
- http://svn.python.org/view?rev=60793&view=rev
- http://wiki.rpath.com/Advisories:rPSA-2008-0243
- http://www.debian.org/security/2008/dsa-1667
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:163
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:164
- http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=InfoDocument-patchbuilder-readme5032900
- http://www.python.org/download/releases/2.5.2/NEWS.txt
- http://www.python.org/download/releases/2.6/NEWS.txt
- http://www.securityfocus.com/archive/1/495445/100/0/threaded
- http://www.securityfocus.com/archive/1/507985/100/0/threaded
- http://www.securityfocus.com/bid/30491
- http://www.ubuntu.com/usn/usn-632-1
- http://www.vmware.com/security/advisories/VMSA-2009-0016.html
- http://www.vupen.com/english/advisories/2008/2288
- http://www.vupen.com/english/advisories/2009/3316
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7720
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8996
- http://www.redhat.com/security/updates/classification/
- https://rhn.redhat.com/errata/RHSA-2009-1176.html
- https://rhn.redhat.com/errata/RHSA-2009-1177.html
- https://rhn.redhat.com/errata/RHSA-2009-1178.html
- https://bugzilla.redhat.com/show_bug.cgi?id=455013
- https://www.cve.org/CVERecord?id=CVE-2008-3143 https://nvd.nist.gov/vuln/detail/CVE-2008-3143
- https://access.redhat.com/errata/RHSA-2009:1178
- https://access.redhat.com/errata/RHSA-2009:1177
- https://access.redhat.com/errata/RHSA-2009:1176
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3143.json
Parent vulnerabilities
(Appears in the following advisories)
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-3143
- agent/references
- agent/severity
- collector/redhat-cve
- agent/software-canonical-lookup
- agent/event
- agent/description
- agent/weakness
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- vendor/python software foundation
- canonical/python software foundation python
- version/python software foundation python/2.0.1
- version/python software foundation python/2.3.7
- version/python software foundation python/2.4.5
- version/python software foundation python/1.5.2
- version/python software foundation python/2.5.1
- version/python software foundation python/1.6.1
- version/python software foundation python/2.1.3
- version/python software foundation python/2.2.3
- vendor/python
- canonical/python python
- package-manager/redhat