cpython.git - https://github.com/python/cpython.git

diff options

author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>	2022-10-28 10:07:50 (GMT)
committer	GitHub <noreply@github.com>	2022-10-28 10:07:50 (GMT)
commit	948c6794711458fd148a3fa62296cadeeb2ed631 (patch)
tree	db318867b08bfd5044d6f4007e41886579c7c25b /Python/pythonrun.c
parent	0037d46378a64dce664ea1dded34141ecdd330e0 (diff)
download	cpython-948c6794711458fd148a3fa62296cadeeb2ed631.zip cpython-948c6794711458fd148a3fa62296cadeeb2ed631.tar.gz cpython-948c6794711458fd148a3fa62296cadeeb2ed631.tar.bz2

[3.8] gh-98517: Fix buffer overflows in _sha3 module (GH-98519) (#98527)

This is a port of the applicable part of XKCP's fix [1] for CVE-2022-37454 and avoids the segmentation fault and the infinite loop in the test cases published in [2]. [1]: https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a [2]: https://mouha.be/sha-3-buffer-overflow/ Regression test added by: Gregory P. Smith [Google LLC] <greg@krypto.org> (cherry picked from commit 0e4e058602d93b88256ff90bbef501ba20be9dd3) Co-authored-by: Theo Buehler <botovq@users.noreply.github.com>

Diffstat (limited to 'Python/pythonrun.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: