Description
Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.
Remediation
References
Related Vulnerabilities
Atlassian Jira Improper Authentication Vulnerability (CVE-2021-39119)
WordPress 4.3.x Denial of Service Vulnerability (4.3 - 4.3.15)
PHP Numeric Errors Vulnerability (CVE-2016-4345)
Oracle Database Server CVE-2006-5338 Vulnerability (CVE-2006-5338)
WordPress Plugin Controlled Admin Access Security Bypass (1.5.5)