You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The py_sha3_new_impl function in sha3module.c has error handling code that looks like this:
error:
if (self) {
Py_DECREF(self);
}
if (data&&buf.obj) {
PyBuffer_Release(&buf);
}
However, there is a goto error before the variable buf is initialized. If that error path is triggered, the function will attempt to free an invalid object, possibly leading to a program crash.
tiran
added
type-bug
An unexpected behavior, bug, or error
3.8
only security fixes
3.9
only security fixes
and removed
type-crash
A hard crash of the interpreter, possibly with a core dump
labels
Apr 17, 2021
tiran
added
type-bug
An unexpected behavior, bug, or error
and removed
type-crash
A hard crash of the interpreter, possibly with a core dump
labels
Apr 17, 2021
Note: these values reflect the state of the issue at the time it was migrated and might not reflect the current state.
Show more details
GitHub fields:
bugs.python.org fields:
The text was updated successfully, but these errors were encountered: