Python CVE-2019-15903 Out of Bounds Read Vulnerability

description-logoDescription

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.

affected-products-logoAffected Applications

Python

CVE References

CVE-2019-15903

Other References

https://bugs.python.org/