bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow

8.2 / 10

HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Description

bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and retried with the same decompressor, crafted input could cause the decompressor to resume from an invalid internal state and perform out-of-bounds writes to a stack buffer. This could crash the process when processing untrusted data.

Basic Information

ID CVE-2026-9669

Source PSF

Published Jun 8, 2026 at 22:01

Modified Jun 8, 2026 at 23:27

Affected Product

Vendor Python Software Foundation

Product CPython

Affected Versions Python Software Foundation CPython 0

CWE Classification

CWE-121

References

{
    "lastseen": "",
    "description": "bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and retried with the same decompressor, crafted input could cause the decompressor to resume from an invalid internal state and perform out-of-bounds writes to a stack buffer. This could crash the process when processing untrusted data.",
    "published": "2026-06-08T22:01:15.420Z",
    "modified": "2026-06-08T23:27:25.188Z",
    "type": "cve",
    "title": "bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow",
    "source": "PSF",
    "references": "https://github.com/python/cpython/pull/150600\nhttps://mail.python.org/archives/list/[email protected]/thread/DBJZETMGUIFK7DVUWMOXHD3Z6IX2QPSX/\nhttps://github.com/python/cpython/issues/150599",
    "id": "CVE-2026-9669",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121"
    ],
    "cvelist": null,
    "sourceData": "Python Software Foundation CPython 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.2,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "CPython",
    "version": "0",
    "vendor": "Python Software Foundation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow_CVE-2026-9669