{ "schema_version": "1.4.0", "id": "GHSA-w9fp-w8cr-vgpg", "modified": "2025-04-09T04:04:45Z", "published": "2022-05-02T03:16:22Z", "aliases": [ "CVE-2009-0544" ], "details": "Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length.", "severity": [], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0544" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48617" }, { "type": "WEB", "url": "http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git%3Ba=commitdiff%3Bh=d1c4875e1f220652fe7ff8358f56dee3b2aba31b" }, { "type": "WEB", "url": "http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git%3Ba=commitdiff%3Bh=fd73731dfad451a81056fbb01e09aa78ab82eb5d" }, { "type": "WEB", "url": "http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git;a=commitdiff;h=d1c4875e1f220652fe7ff8358f56dee3b2aba31b" }, { "type": "WEB", "url": "http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git;a=commitdiff;h=fd73731dfad451a81056fbb01e09aa78ab82eb5d" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html" }, { "type": "WEB", "url": "http://secunia.com/advisories/34199" }, { "type": "WEB", "url": "http://secunia.com/advisories/35065" }, { "type": "WEB", "url": "http://www.gentoo.org/security/en/glsa/glsa-200903-11.xml" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:049" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:050" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2009/02/07/1" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2009/02/12/5" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/33674" } ], "database_specific": { "cwe_ids": [ "CWE-119" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2009-02-12T17:30:00Z" } }