Message171245
This bug is similar to #16037 and a modified copy of #16038.
The smtplib module doesn't limit the amount of read data in its call to readline(). An erroneous or malicious SMTP server can trick the smtplib module to consume large amounts of memory.
Suggestion:
The smtplib module should be modified to use limited readline() with _MAXLINE like the httplib module. |
|
Date |
User |
Action |
Args |
2012-09-25 10:40:09 | christian.heimes | set | recipients:
+ christian.heimes |
2012-09-25 10:40:09 | christian.heimes | set | messageid: <1348569609.82.0.499861906556.issue16042@psf.upfronthosting.co.za> |
2012-09-25 10:40:09 | christian.heimes | link | issue16042 messages |
2012-09-25 10:40:09 | christian.heimes | create | |
|