← back
CVE-2008-2316

CVE-2008-2316

EPSS 3.5%
Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and earlier might allow context-dependent attackers to defeat cryptographic digests, related to "partial hashlib hashing of data exceeding 4GB."
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.gentoo.org/attachment.cgi?id=159422&action=viewhttp://bugs.gentoo.org/show_bug.cgi?id=230640http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.htmlhttp://secunia.com/advisories/31305http://secunia.com/advisories/31332http://secunia.com/advisories/31358http://secunia.com/advisories/31365http://secunia.com/advisories/31473http://secunia.com/advisories/31518http://secunia.com/advisories/31687http://secunia.com/advisories/33937