Skip to content
main
Switch branches/tags
cpython/Python/
Go to file
cpython/Python/

Latest commit

@gpshead
gpshead gh-95778: CVE-2020-10735: Prevent DoS by very large int() (#96499)
511ca94 Sep 2, 2022
gh-95778: CVE-2020-10735: Prevent DoS by very large int() (#96499) 
Integer to and from text conversions via CPython's bignum `int` type is not safe against denial of service attacks due to malicious input. Very large input strings with hundred thousands of digits can consume several CPU seconds.

This PR comes fresh from a pile of work done in our private PSRT security response team repo.

Signed-off-by: Christian Heimes [Red Hat] <christian@python.org>
Tons-of-polishing-up-by: Gregory P. Smith [Google] <greg@krypto.org>
Reviews via the private PSRT repo via many others (see the NEWS entry in the PR).

<!-- gh-issue-number: gh-95778 -->
* Issue: gh-95778
<!-- /gh-issue-number -->

I wrote up [a one pager for the release managers](https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y/edit#). Much of that text wound up in the Issue. Backports PRs already exist. See the issue for links.
511ca94

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.β€Š.
clinic
gh-95778: CVE-2020-10735: Prevent DoS by very large int() (#96499)
Sep 2, 2022
deepfreeze
bpo-45696: Deep-freeze selected modules (GH-29118)
Nov 11, 2021
frozen_modules
bpo-45020: Drop the frozen .h files from the repo. (gh-28392)
Sep 16, 2021
Python-ast.c
gh-95185: Check recursion depth in the AST constructor (#95186)
Jul 24, 2022
Python-tokenize.c
gh-90928: Statically Initialize the Keywords Tuple in Clinic-Generate…
Aug 11, 2022
README
Issue #18093: Factor out the programs that embed the runtime
Jul 25, 2014
_warnings.c
gh-91102: Port 8-argument _warnings.warn_explicit to Argument Clinic (#…
Jul 20, 2022
adaptive.md
Update adaptive.md for inline caching (GH-31817)
Mar 11, 2022
asdl.c
bpo-43244: Remove ast.h, asdl.h, Python-ast.h headers (GH-24933)
Mar 23, 2021
ast.c
gh-92597: Improve error message for AST nodes with invalid ranges (GH…
Jun 1, 2022
ast_opt.c
bpo-45995: add "z" format specifer to coerce negative 0 to zero (GH-3…
Apr 11, 2022
ast_unparse.c
bpo-43224: Implement PEP 646 grammar changes (GH-31018)
Mar 26, 2022
bltinmodule.c
GH-90230: Add stats to breakdown the origin of calls to `PyEval_EvalF…
May 27, 2022
bootstrap_hash.c
bpo-46303: Move fileutils.h private functions to internal C API (GH-3…
Jan 11, 2022
ceval.c
gh-93554: Conditional jump opcodes only jump forward (GH-96318)
Sep 1, 2022
ceval_gil.c
GH-96177: Move GIL and eval breaker code out of ceval.c into ceval_gi…
Aug 24, 2022
codecs.c
bpo-46541: Replace core use of _Py_IDENTIFIER() with statically initi…
Feb 8, 2022
compile.c
gh-93554: Conditional jump opcodes only jump forward (GH-96318)
Sep 1, 2022
condvar.h
gh-74953: _PyThread_cond_after() uses _PyTime_t (#94056)
Jun 21, 2022
context.c
Add more stats for freelist use and allocations. (GH-92211)
May 3, 2022
dtoa.c
bpo-45412: Add _PY_SHORT_FLOAT_REPR macro (GH-31171)
Feb 23, 2022
dup2.c
gh-95174: Handle missing dup() and constants in WASI (GH-95229)
Jul 26, 2022
dynamic_annotations.c
bpo-32241: Add the const qualifire to declarations of umodifiable str…
Dec 12, 2017
dynload_hpux.c
bpo-44959: Add fallback to extension modules with '.sl' suffix on HP-…
Sep 8, 2021
dynload_shlib.c
bpo-43895: Remove an unnecessary cache of shared object handles (GH-2…
Jul 7, 2021
dynload_stub.c
Issue #13959: Re-implement imp.get_suffixes() in Lib/imp.py.
May 4, 2012
dynload_win.c
gh-92536: PEP 623: Remove wstr and legacy APIs from Unicode (GH-92537)
May 12, 2022
emscripten_signal.c
bpo-47176: Interrupt handling for wasm32-emscripten builds without pt…
Apr 3, 2022
errors.c
gh-94673: Add _PyStaticType_InitBuiltin() (#95152)
Jul 25, 2022
fileutils.c
gh-95174: Handle missing dup() and constants in WASI (GH-95229)
Jul 26, 2022
formatter_unicode.c
gh-89653: Use int type for Unicode kind (#92704)
May 13, 2022
frame.c
GH-96237: Allow non-functions as reference-holder in frames. (GH-96238)
Aug 25, 2022
frozen.c
bpo-46748: Don't import <stdbool.h> in public headers (GH-31553)
Feb 25, 2022
frozenmain.c
gh-93103: Parser uses PyConfig.parser_debug instead of Py_DebugFlag (#…
May 24, 2022
future.c
bpo-38605: Revert making 'from __future__ import annotations' the def…
Apr 21, 2021
getargs.c
GH-95909: Make _PyArg_Parser initialization thread safe (GH-95958)
Aug 16, 2022
getcompiler.c
closes bpo-43278: remove unnecessary leading '\n' from COMPILER when …
Feb 26, 2021
getcopyright.c
Update copyright year to 2022. (GH-30335)
Jan 2, 2022
getopt.c
gh-90300: split --help output into separate options (#30331)
Jun 1, 2022
getplatform.c
bpo-32150: Expand tabs to spaces in C files. (#4583)
Nov 28, 2017
getversion.c
bpo-43931: Export Python version as API data (GH-25577)
Dec 10, 2021
hamt.c
GH-93207: Remove HAVE_STDARG_PROTOTYPES configure check for stdarg.h (#…
May 27, 2022
hashtable.c
bpo-41061: Fix incorrect expressions in hashtable (GH-21028)
Jun 22, 2020
import.c
gh-93741: Add private C API _PyImport_GetModuleAttrString() (GH-93742)
Jun 14, 2022
importdl.c
bpo-47162: Add call trampoline to mitigate bad fpcasts on Emscripten (G…
Mar 30, 2022
importdl.h
bpo-47162: Add call trampoline to mitigate bad fpcasts on Emscripten (G…
Mar 30, 2022
initconfig.c
gh-95778: CVE-2020-10735: Prevent DoS by very large int() (#96499)
Sep 2, 2022
makeopcodetargets.py
gh-94216: add pseudo instructions to the dis/opcodes modules (GH-94241)
Jul 1, 2022
marshal.c
gh-78214: marshal: Stabilize FLAG_REF usage (GH-8226)
May 4, 2022
modsupport.c
bpo-1635741: Add PyModule_AddObjectRef() function (GH-23122)
Nov 4, 2020
mysnprintf.c
bpo-36020: Require vsnprintf() to build Python (GH-20899)
Jun 15, 2020
mystrtoul.c
bpo-35134: Add Include/cpython/longobject.h (GH-29044)
Oct 19, 2021
opcode_targets.h
gh-93554: Conditional jump opcodes only jump forward (GH-96318)
Sep 1, 2022
pathconfig.c
gh-91985: Ensure in-tree builds override platstdlib_dir in every path…
Jun 16, 2022
preconfig.c
gh-77782: Deprecate global configuration variable (#93943)
Jun 17, 2022
pyarena.c
bpo-43244: Remove the pyarena.h header (GH-25007)
Mar 24, 2021
pyctype.c
Include files missed in r72044.
Apr 27, 2009
pyfpe.c
bpo-46315: Add ifdef HAVE_ feature checks for WASI compatibility (GH-…
Jan 13, 2022
pyhash.c
bpo-29410: Change the default hash algorithm to SipHash13. (GH-28752)
Oct 10, 2021
pylifecycle.c
gh-96143: Allow Linux perf profiler to see Python calls (GH-96123)
Aug 30, 2022
pymath.c
bpo-45440: Remove pymath.c fallbacks (GH-28977)
Oct 15, 2021
pystate.c
GH-96071: fix deadlock in PyGILState_Ensure (GH-96124)
Aug 19, 2022
pystrcmp.c
bpo-41524: fix pointer bug in PyOS_mystr{n}icmp (GH-21845)
Aug 27, 2020
pystrhex.c
gh-91768: C API no longer use "const PyObject*" type (#91769)
Apr 21, 2022
pystrtod.c
bpo-45995: add "z" format specifer to coerce negative 0 to zero (GH-3…
Apr 11, 2022
pythonrun.c
gh-92651: Remove the Include/token.h header file (#92652)
May 11, 2022
pytime.c
gh-74953: Add _PyTime_FromMicrosecondsClamp() function (#93942)
Jun 17, 2022
specialize.c
gh-93554: Conditional jump opcodes only jump forward (GH-96318)
Sep 1, 2022
stdlib_module_names.h
gh-93243: Make smtpd private before porting its users (GH-93246)
Aug 6, 2022
structmember.c
bpo-44655: Include the name of the type in unset __slots__ attribute …
Jul 16, 2021
suggestions.c
gh-93937, C API: Move PyFrame_GetBack() to Python.h (#93938)
Jun 19, 2022
symtable.c
bpo-46765: Replace Locally Cached Strings with Statically Initialized…
Feb 23, 2022
sysmodule.c
gh-95778: CVE-2020-10735: Prevent DoS by very large int() (#96499)
Sep 2, 2022
thread.c
gh-96125: Fix sys.thread_info.name on pthread platforms (GH-96126)
Aug 19, 2022
thread_nt.h
gh-88750: On Windows, PyThread_acquire_lock() no longer checks for NU…
May 10, 2022
thread_pthread.h
gh-95174: Add pthread stubs for WASI (GH-95234)
Jul 27, 2022
thread_pthread_stubs.h
gh-95174: Add pthread stubs for WASI (GH-95234)
Jul 27, 2022
traceback.c
gh-93883: elide traceback indicators when possible (#93994)
Jul 11, 2022

README 

Miscellaneous source files for the main Python shared library