bug#46631: Python CVE-2021-3177

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#46631: Python CVE-2021-3177

From:	Leo Famulari
Subject:	bug#46631: Python CVE-2021-3177
Date:	Thu, 18 Feb 2021 22:21:34 -0500

Quoting from MITRE:

------
Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in
_ctypes/callproc.c, which may lead to remote code execution in certain
Python applications that accept floating-point numbers as untrusted
input, as demonstrated by a 1e300 argument to c_double.from_param. This
occurs because sprintf is used unsafely. 
------
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3177

There is not yet an upstream release to fix the issue in the 3.8 series
that we distribute. I believe there are patches we can cherry-pick. Can
somebody find them?

I assume that Python is considered to be "graft-able". Can anyone
confirm?

The upstream bug report:
https://bugs.python.org/issue42938

[Prev in Thread]

Current Thread

[Next in Thread]

bug#46631: Python CVE-2021-3177, Leo Famulari <=
- bug#46631: Python CVE-2021-3177, Ludovic Courtès, 2021/02/19
- bug#46631: Python CVE-2021-3177, Leo Famulari, 2021/02/19
  - bug#46631: Python CVE-2021-3177, Leo Famulari, 2021/02/19
    - bug#46631: Python CVE-2021-3177, Leo Famulari, 2021/02/19
    - bug#46631: Python CVE-2021-3177, Ludovic Courtès, 2021/02/22
    - bug#46631: Python CVE-2021-3177, Leo Famulari, 2021/02/23

Prev by Date: bug#46624: Too many heap sections: Increase MAXHINCR or MAX_HEAP_SEC
Next by Date: bug#46624: Too many heap sections: Increase MAXHINCR or MAX_HEAP_SEC
Previous by thread: bug#46624: Too many heap sections: Increase MAXHINCR or MAX_HEAP_SEC
Next by thread: bug#46631: Python CVE-2021-3177
Index(es):
- Date
- Thread