Skip to content

OOM vulnerability in the imaplib module #119511

New issue
Jump to bottom
New issue
Jump to bottom
Open
Open
OOM vulnerability in the imaplib module#119511
Labels
3.10only security fixes3.11only security fixes3.12bugs and security fixes3.13bugs and security fixes3.14new features, bugs and security fixes3.8 (EOL)end of life3.9only security fixesstdlibPython modules in the Lib dirtopic-IOtopic-emailtype-securityA security issue
@serhiy-storchaka

Description

@serhiy-storchaka
serhiy-storchaka
opened on May 24, 2024

The IMAP4 protocol supports "literal" syntax, when one side specifies the size of the data and then sends the specified amount of bytes. The imaplib client reads such data with a single read(size) call, and therefore is affected by the general vulnerability in the read() method -- it allocates the amount of memory that came from untrusted source. Just an attempt to connect to the malicious IMAP4 server can send your Python program in swap.

Linked PRs

Metadata

Assignees

No one assigned

    Labels

    3.10only security fixes3.11only security fixes3.12bugs and security fixes3.13bugs and security fixes3.14new features, bugs and security fixes3.8 (EOL)end of life3.9only security fixesstdlibPython modules in the Lib dirtopic-IOtopic-emailtype-securityA security issue

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions