Description

Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and earlier might allow context-dependent attackers to defeat cryptographic digests, related to "partial hashlib hashing of data exceeding 4GB."

Remediation

References

CVE-2008-2316

Related Vulnerabilities

EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17302)

WordPress Plugin Church Admin Arbitrary File Upload (4.4.6)

WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Multiple Vulnerabilities (4.2.2)

Apache Traffic Server CVE-2015-5168 Vulnerability (CVE-2015-5168)

Apache Traffic Server CVE-2014-3525 Vulnerability (CVE-2014-3525)

Severity

High

Classification

CVE-2008-2316

Tags

Missing Update Known Vulnerabilities