Unrated severityNVD Advisory· Published Aug 1, 2008· Updated Jun 16, 2026
CVE-2008-2316
CVE-2008-2316
Description
Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and earlier might allow context-dependent attackers to defeat cryptographic digests, related to "partial hashlib hashing of data exceeding 4GB."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12cpe:2.3:a:python:python:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:python:python:*:*:*:*:*:*:*:*range: <=2.5.2
- (no CPE)range: <=2.5.2
- Range: <=2.5.2
- osv-coords9 versionspkg:rpm/opensuse/python&distro=openSUSE%20Tumbleweedpkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP1pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP1
< 2.7.18-8.1+ 8 more
- (no CPE)range: < 2.7.18-8.1
- (no CPE)range: < 2.7.17-7.32.1
- (no CPE)range: < 2.7.17-7.32.1
- (no CPE)range: < 2.7.17-7.32.1
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
- (no CPE)range: < 2.7.17-7.32.2
Patches
Vulnerability mechanics
References
24- bugs.gentoo.org/attachment.cginvdExploit
- bugs.gentoo.org/show_bug.cginvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.htmlnvdThird Party Advisory
- security.gentoo.org/glsa/glsa-200807-16.xmlnvdThird Party Advisory
- slackware.com/security/viewer.phpnvdThird Party Advisory
- support.apple.com/kb/HT3438nvdThird Party Advisory
- wiki.rpath.com/Advisories:rPSA-2008-0243nvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.novell.com/support/search.donvdThird Party Advisory
- www.securityfocus.com/archive/1/495445/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/30491nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/usn-632-1nvdThird Party Advisory
- www.vupen.com/english/advisories/2008/2288nvdBroken LinkThird Party Advisory
- lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlnvdMailing List
- secunia.com/advisories/31305nvdBroken Link
- secunia.com/advisories/31332nvdBroken Link
- secunia.com/advisories/31358nvdBroken Link
- secunia.com/advisories/31365nvdBroken Link
- secunia.com/advisories/31473nvdBroken Link
- secunia.com/advisories/31518nvdBroken Link
- secunia.com/advisories/31687nvdBroken Link
- secunia.com/advisories/33937nvdBroken Link
- exchange.xforce.ibmcloud.com/vulnerabilities/44173nvdVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/44174nvdVDB Entry
News mentions
0No linked articles in our index yet.