Unrated severityNVD Advisory· Published Aug 1, 2008· Updated Jun 16, 2026
CVE-2008-2315
CVE-2008-2315
Description
Multiple integer overflows in Python 2.5.2 and earlier allow context-dependent attackers to have an unknown impact via vectors related to the (1) stringobject, (2) unicodeobject, (3) bufferobject, (4) longobject, (5) tupleobject, (6) stropmodule, (7) gcmodule, and (8) mmapmodule modules. NOTE: The expandtabs integer overflows in stringobject and unicodeobject in 2.5.2 are covered by CVE-2008-5031.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:a:python:python:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:python:python:*:*:*:*:*:*:*:*range: <=2.5.2
- (no CPE)range: <=2.5.2
- osv-coords9 versionspkg:rpm/opensuse/python&distro=openSUSE%20Tumbleweedpkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP1pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP1
< 2.7.18-8.1+ 8 more
- (no CPE)range: < 2.7.18-8.1
- (no CPE)range: < 2.7.17-7.32.1
- (no CPE)range: < 2.7.17-7.32.1
- (no CPE)range: < 2.7.17-7.32.1
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
Patches
Vulnerability mechanics
References
35- bugs.gentoo.org/attachment.cginvdExploit
- bugs.gentoo.org/show_bug.cginvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.htmlnvdThird Party Advisory
- security.gentoo.org/glsa/glsa-200807-16.xmlnvdThird Party Advisory
- slackware.com/security/viewer.phpnvdThird Party Advisory
- support.apple.com/kb/HT3438nvdThird Party Advisory
- support.avaya.com/css/P8/documents/100074697nvdThird Party Advisory
- www.debian.org/security/2008/dsa-1667nvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdBroken LinkThird Party Advisory
- www.mandriva.com/security/advisoriesnvdBroken LinkThird Party Advisory
- www.novell.com/support/search.donvdThird Party Advisory
- www.securityfocus.com/archive/1/507985/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/30491nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/usn-632-1nvdThird Party Advisory
- www.vmware.com/security/advisories/VMSA-2009-0016.htmlnvdThird Party Advisory
- www.vupen.com/english/advisories/2008/2288nvdBroken LinkThird Party Advisory
- www.vupen.com/english/advisories/2009/3316nvdBroken LinkThird Party Advisory
- lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlnvdMailing List
- secunia.com/advisories/31305nvdBroken Link
- secunia.com/advisories/31332nvdBroken Link
- secunia.com/advisories/31358nvdBroken Link
- secunia.com/advisories/31365nvdBroken Link
- secunia.com/advisories/31518nvdBroken Link
- secunia.com/advisories/31687nvdBroken Link
- secunia.com/advisories/32793nvdBroken Link
- secunia.com/advisories/33937nvdBroken Link
- secunia.com/advisories/37471nvdBroken Link
- secunia.com/advisories/38675nvdBroken Link
- www.openwall.com/lists/oss-security/2008/11/05/2nvdMailing List
- www.openwall.com/lists/oss-security/2008/11/05/3nvdMailing List
- exchange.xforce.ibmcloud.com/vulnerabilities/44172nvdVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/44173nvdVDB Entry
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8445nvdBroken Link
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8683nvdBroken Link
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9761nvdBroken Link
News mentions
0No linked articles in our index yet.