OSV-2023-361

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/python3-libraries/OSV-2023-361.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-361
Published
2023-05-02T14:00:14.863724Z
Modified
2023-05-02T14:00:14.864013Z
Summary
Heap-buffer-overflow in tok_get_normal_mode
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58510

Crash type: Heap-buffer-overflow WRITE 1
Crash state:
tok_get_normal_mode
_PyTokenizer_Get
_PyPegen_tokenize_full_source_to_check_for_errors
References

Affected packages

OSS-Fuzz / python3-libraries

Package

Name
python3-libraries
Purl
pkg:generic/python3-libraries

Affected ranges

Type
GIT
Repo
https://github.com/python/cpython.git
Events
Introduced
1ef61cf71a218c71860ff6aecf0fd51edb8b65dc
Fixed
5078eedc5b18f0d208af6e30f60b33419132d1b6

Ecosystem specific 

{
    "severity": "HIGH"
}