PublicDate: 2008-08-01 14:41:00 UTC
Candidate: CVE-2008-2315
References: 
 https://ubuntu.com/security/notices/USN-632-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2315
Description:
 Multiple integer overflows in Python 2.5.2 and earlier allow
 context-dependent attackers to have an unknown impact via vectors related
 to the (1) stringobject, (2) unicodeobject, (3) bufferobject, (4)
 longobject, (5) tupleobject, (6) stropmodule, (7) gcmodule, and (8)
 mmapmodule modules.  NOTE: The expandtabs integer overflows in stringobject
 and unicodeobject in 2.5.2 are covered by CVE-2008-5031.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: low
Discovered-by:
Assigned-to: kees
CVSS: 

Patches_python2.5:
 upstream: http://svn.python.org/view?rev=65261&view=rev
upstream_python2.5: released (2.5.2-10)
dapper_python2.5: DNE
feisty_python2.5: released (2.5.1-0ubuntu1.2)
gutsy_python2.5: released (2.5.1-5ubuntu5.2)
hardy_python2.5: released (2.5.2-2ubuntu4.1)
devel_python2.5: not-affected (2.5.2-10ubuntu1)


Patches_python2.4:
 upstream: http://svn.python.org/view?rev=61345&view=rev
upstream_python2.4: released (2.4.5-5)
dapper_python2.4: released (2.4.3-0ubuntu6.2)
feisty_python2.4: released (2.4.4-2ubuntu7.2)
gutsy_python2.4: released (2.4.4-6ubuntu4.2)
hardy_python2.4: released (2.4.5-1ubuntu4.1)
devel_python2.4: not-affected (2.4.5-5ubuntu1)