CVE-2017-1000158: python: Integer overflow in PyString_DecodeEscape results in heap-base buffer overflow

Severity: Critical

CVSS Score: 9.8

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)