Message 111350 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	belopolsky
Recipients	antlong, belopolsky, eric.araujo, eric.smith, jkloth, loewis, mark.dickinson, ronaldoussoren, vstinner
Date	2010-07-23.15:53:12
SpamBayes Score	0.0032549247
Marked as misclassified	No
Message-id	<1279900394.81.0.497344548912.issue9335@psf.upfronthosting.co.za>
In-reply-to

Content
Accepting binary input where only letters are expected by an application is a very common source of security holes. An application that relies on s.isalpha() to guarantee that s does not contain non-ASCII characters when UTF-8 locale is in use, may have a security hole if it is ran with python 2.5.

Accepting binary input where only letters are expected by an application is a very common source of security holes.   An application that relies on s.isalpha() to guarantee that s does not contain non-ASCII characters when UTF-8 locale is in use, may have a security hole if it is ran with python 2.5.

History
Date	User	Action	Args
2010-07-23 15:53:14	belopolsky	set	recipients: + belopolsky, loewis, ronaldoussoren, mark.dickinson, vstinner, eric.smith, jkloth, eric.araujo, antlong
2010-07-23 15:53:14	belopolsky	set	messageid: <1279900394.81.0.497344548912.issue9335@psf.upfronthosting.co.za>
2010-07-23 15:53:12	belopolsky	link	issue9335 messages
2010-07-23 15:53:12	belopolsky	create