]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d5fe995) | patch
[3.7] gh-95778: CVE-2020-10735: Prevent DoS by very large int() (GH-96504)
authorGregory P. Smith <greg@krypto.org>
Tue, 6 Sep 2022 05:24:36 +0000 (22:24 -0700)
committerGitHub <noreply@github.com>
Tue, 6 Sep 2022 05:24:36 +0000 (01:24 -0400)
commit15ec1afd4fcd2da1e2d2b256c562fb42d8d886a2
tree2d57338531c6e22098a8a76f26262894920a85bctree | snapshot
parentd5fe9951fe6e69e9175eca24170a220747ec9047commit | diff
[3.7] gh-95778: CVE-2020-10735: Prevent DoS by very large int() (GH-96504)

Converting between `int` and `str` in bases other than 2
(binary), 4, 8 (octal), 16 (hexadecimal), or 32 such as base 10 (decimal) now
raises a `ValueError` if the number of digits in string form is above a
limit to avoid potential denial of service attacks due to the algorithmic
complexity. This is a mitigation for CVE-2020-10735
(https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735).

This new limit can be configured or disabled by environment variable, command
line flag, or :mod:`sys` APIs. See the `Integer String Conversion Length
Limitation` documentation.  The default limit is 4300
digits in string form.

Patch by Gregory P. Smith [Google] and Christian Heimes [Red Hat] with feedback
from Victor Stinner, Thomas Wouters, Steve Dower, Ned Deily, and Mark Dickinson.
26 files changed:
Doc/data/python3.7m.abi diff | blob | blame | history
Doc/library/functions.rst diff | blob | blame | history
Doc/library/json.rst diff | blob | blame | history
Doc/library/stdtypes.rst diff | blob | blame | history
Doc/library/sys.rst diff | blob | blame | history
Doc/library/test.rst diff | blob | blame | history
Doc/using/cmdline.rst diff | blob | blame | history
Doc/whatsnew/3.7.rst diff | blob | blame | history
Include/internal/pycore_long.h [new file with mode: 0644] blob
Include/internal/pystate.h diff | blob | blame | history
Lib/test/support/__init__.py diff | blob | blame | history
Lib/test/test_ast.py diff | blob | blame | history
Lib/test/test_cmd_line.py diff | blob | blame | history
Lib/test/test_compile.py diff | blob | blame | history
Lib/test/test_decimal.py diff | blob | blame | history
Lib/test/test_int.py diff | blob | blame | history
Lib/test/test_json/test_decode.py diff | blob | blame | history
Lib/test/test_sys.py diff | blob | blame | history
Lib/test/test_xmlrpc.py diff | blob | blame | history
Misc/NEWS.d/next/Security/2022-08-07-16-53-38.gh-issue-95778.ch010gps.rst [new file with mode: 0644] blob
Modules/main.c diff | blob | blame | history
Objects/longobject.c diff | blob | blame | history
Python/ast.c diff | blob | blame | history
Python/clinic/sysmodule.c.h diff | blob | blame | history
Python/pylifecycle.c diff | blob | blame | history
Python/sysmodule.c diff | blob | blame | history
Mirror of https://github.com/python/cpython.git