OSV-2023-337

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/python3-libraries/OSV-2023-337.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-337
Published
2023-04-22T14:02:16.429774Z
Modified
2023-04-22T14:02:16.430016Z
Summary
Heap-buffer-overflow in PyBytes_FromStringAndSize
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58225

Crash type: Heap-buffer-overflow READ {*}
Crash state:
PyBytes_FromStringAndSize
do_mkvalue
va_build_stack
References

Affected packages

OSS-Fuzz / python3-libraries

Package

Name
python3-libraries
Purl
pkg:generic/python3-libraries

Affected ranges

Type
GIT
Repo
https://github.com/python/cpython.git
Events
Introduced
1ef61cf71a218c71860ff6aecf0fd51edb8b65dc
Fixed
9169a56fad246364fd3224306e72e0d0725c35aa

Ecosystem specific 

{
    "severity": "MEDIUM"
}