📜🤖 Added by blurb_it.

blurb-it[bot] · web-flow · commit 818304a47c2e · 2025-06-27T21:14:42.000Z
diff --git a/Misc/NEWS.d/next/Security/2025-06-27-21-14-40.gh-issue-136053._pnEv0.rst b/Misc/NEWS.d/next/Security/2025-06-27-21-14-40.gh-issue-136053._pnEv0.rst
@@ -0,0 +1 @@
+Fix a potential out-of-bounds memory access vulnerability in the ``TYPE_SLICE`` case of the ``r_object`` function in ``marshal.c``. The code now properly checks if ``r_ref_reserve()`` fails before using its return value, preventing crashes or security issues when deserializing malicious marshal data.

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	+Fix a potential out-of-bounds memory access vulnerability in the ``TYPE_SLICE`` case of the ``r_object`` function in ``marshal.c``. The code now properly checks if ``r_ref_reserve()`` fails before using its return value, preventing crashes or security issues when deserializing malicious marshal data.