CVE-2008-2316 in Pythoninfo

Summary

Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and earlier might allow context-dependent attackers to defeat cryptographic digests, related to "partial hashlib hashing of data exceeding 4GB."

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

05/18/2008

Disclosure

08/01/2008

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-189 (Confirmed)

CVSS

7.3

EPSS

0.01692

CTI

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-2316
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-2316
CVE Details	https://www.cvedetails.com/cve/CVE-2008-2316/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!