NVD脆弱性詳細

Exploit、PoC検索

NVD脆弱性検索トップ

->

NVD脆弱性詳細

CVE-2026-9669

概要	bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and retried with the same decompressor, crafted input could cause the decompressor to resume from an invalid internal state and perform out-of-bounds writes to a stack buffer. This could crash the process when processing untrusted data.
公表日	2026年6月9日8:17
登録日	2026年6月10日4:12
最終更新日	2026年6月9日22:49

関連情報、対策とツール

No	URL	refsource	タグ
1	https://github.com/python/cpython/issues/150599	cna@python.org
2	https://github.com/python/cpython/pull/150600	cna@python.org
3	https://mail.python.org/archives/list/security-announce@python.org/thread/DBJZETMGUIFK7DVUWMOXHD3Z6IX2QPSX/	cna@python.org
4	http://www.openwall.com/lists/oss-security/2026/06/08/17	af854a3a-2127-422b-91ae-364da2661108

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-121	スタックオーバーフロー	https://cwe.mitre.org/data/definitions/121.html