I don't have a Windows machine to check, but I noticed while reading code that the _overlapped.WSAConnect() function calls PyTuple_GET_SIZE on its argument without checking that it is actually a tuple (

The following code should reproduce the problem and access out-of-bounds memory:

import asyncio.windows_events
import socket
ip = asyncio.windows_events.IocpProactor()
sock = socket.socket(type=socket.SOCK_DGRAM)
ip.connect(sock, None)

• PR: [3.11] gh-98793: Fix typecheck in overlapped.c (GH-98835) #98889

• PR: [3.10] gh-98793: Fix typecheck in overlapped.c (GH-98835) #98890

• PR: [3.9] gh-98793: Fix typecheck in overlapped.c (GH-98835) (GH-98890) #140825