CPython (aka Python) up to 2.7.13 is vulnerable to an...
Critical severity
Unreviewed
Published
May 13, 2022
to the GitHub Advisory Database
•
Updated Feb 16, 2023
Description
Published by the National Vulnerability Database
Nov 17, 2017
Published to the GitHub Advisory Database
May 13, 2022
Last updated
Feb 16, 2023
CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)
References