This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author Brian.Cain
Recipients Brian.Cain
Date 2015-10-13.03:15:13
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1444706115.92.0.283351483962.issue25388@psf.upfronthosting.co.za>
In-reply-to
Content 
This issue is similar to (but I believe distinct from) the one reported earlier as http://bugs.python.org/issue24022.  Tokenizer failures strike me as difficult to exploit, but risky nonetheless.

Attached is a test case that illustrates the problem and the output from ASan when it encounters the failure.

All of the versions below that I tested failed in one way or another (segfault, assertion failure, printing enormous blank output to console).  Some fail frequently and some exhibit this failure only occasionally.

Python 3.4.3 (default, Mar 26 2015, 22:03:40) 
Python 2.7.9 (default, Apr  2 2015, 15:33:21) [GCC 4.9.2] on linux2
Python 3.6.0a0 (default:2a8a39640aa2+, Jul  9 2015, 12:28:50) [GCC 4.9.2] on linux
History
Date User Action Args
2015-10-13 03:15:16Brian.Cainsetrecipients: + Brian.Cain
2015-10-13 03:15:15Brian.Cainsetmessageid: <1444706115.92.0.283351483962.issue25388@psf.upfronthosting.co.za>
2015-10-13 03:15:15Brian.Cainlinkissue25388 messages
2015-10-13 03:15:15Brian.Caincreate