Message297162
Backporting this to 2.7 requires too much work taking to account that PyArg_Parse and other argument parsing functions don't check for null characters in 2.7. The most serious security issue is fixed in issue30730, other cases unlikely can be used for attacks. |
|
Date |
User |
Action |
Args |
2017-06-28 08:22:41 | serhiy.storchaka | set | recipients:
+ serhiy.storchaka, vstinner, ezio.melotti, benhoyt, python-dev, arnaudc |
2017-06-28 08:22:41 | serhiy.storchaka | set | messageid: <1498638161.26.0.338458621901.issue13617@psf.upfronthosting.co.za> |
2017-06-28 08:22:41 | serhiy.storchaka | link | issue13617 messages |
2017-06-28 08:22:41 | serhiy.storchaka | create | |
|