CVE-2018-20406 — Integer Overflow or Wraparound in Python
CWE-190 — Integer Overflow or WraparoundCWE-400 — Uncontrolled Resource Consumption20 documents7 sources
Severity
7.5HIGHNVD
OSV7.6
EPSS
2.0%
top 16.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 23
Latest updateJul 11
Description
Modules/_pickle.c in Python before 3.7.1 has an integer overflow via a large LONG_BINPUT value that is mishandled during a "resize to twice the size" attempt. This issue might cause memory exhaustion, but is only relevant if the pickle format is used for serializing tens or hundreds of gigabytes of data. This issue is fixed in: v3.4.10, v3.4.10rc1; v3.5.10, v3.5.10rc1, v3.5.7, v3.5.7rc1, v3.5.8, v3.5.8rc1, v3.5.8rc2, v3.5.9; v3.6.10, v3.6.10rc1, v3.6.11, v3.6.11rc1, v3.6.12, v3.6.7, v3.6.7rc1, v…
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6
Affected Packages2 packages
Also affects: Debian Linux 8.0, Fedora 28, 29, 30
Patches
🔴Vulnerability Details
5OSV▶
python3.5, python3.6, python3.7, python3.8, python3.9, python3.10, python3.11, python3.12 vulnerabilities↗2024-07-11
📋Vendor Advisories
5💬Community
9Bugzilla▶
CVE-2018-20406 python3: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [fedora-all]↗2019-01-09
Bugzilla▶
CVE-2018-20406 python33: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [fedora-28]↗2019-01-09
Bugzilla▶
CVE-2018-20406 python36: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [fedora-29]↗2019-01-09
Bugzilla▶
CVE-2018-20406 python36: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [epel-7]↗2019-01-09
Bugzilla▶
CVE-2018-20406 python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data↗2019-01-09