Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remote attackers to have unspecified impact via a negative data size value, which triggers a heap-based buffer overflow.
{ "cwe_ids": [] }
{ "vanir_signatures": [ { "source": "https://github.com/python/cpython/commit/d751040b1a4e35fd3b01fc919cd8f9374ed714fd", "digest": { "function_hash": "313645478689508232317534734015673937870", "length": 1980.0 }, "deprecated": false, "signature_type": "Function", "id": "PSF-2016-7-07eb1964", "signature_version": "v1", "target": { "file": "Modules/zipimport.c", "function": "get_data" } }, { "source": "https://github.com/python/cpython/commit/d751040b1a4e35fd3b01fc919cd8f9374ed714fd", "digest": { "line_hashes": [ "141314266699022732687104474145858926350", "58932469579152330604121716034541420257", "293715085738001166973387474142203612408" ], "threshold": 0.9 }, "deprecated": false, "signature_type": "Line", "id": "PSF-2016-7-3084b8eb", "signature_version": "v1", "target": { "file": "Modules/zipimport.c" } }, { "source": "https://github.com/python/cpython/commit/64ea192b73e39e877d8b39ce6584fa580eb0e9b4", "digest": { "line_hashes": [ "167474003122500294144509576708096792733", "51597762786976815965554609765896405356", "305550384080879515257579669516704359939" ], "threshold": 0.9 }, "deprecated": false, "signature_type": "Line", "id": "PSF-2016-7-7551afbf", "signature_version": "v1", "target": { "file": "Modules/zipimport.c" } }, { "source": "https://github.com/python/cpython/commit/64ea192b73e39e877d8b39ce6584fa580eb0e9b4", "digest": { "function_hash": "298246660755263030412569911436894744812", "length": 1880.0 }, "deprecated": false, "signature_type": "Function", "id": "PSF-2016-7-e9c42eae", "signature_version": "v1", "target": { "file": "Modules/zipimport.c", "function": "get_data" } } ] }