This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author zyxtarmo
Recipients zyxtarmo
Date 2017-08-10.13:05:07
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1502370308.59.0.330372218363.issue31175@psf.upfronthosting.co.za>
In-reply-to
Content
The problem: miscreants are modifying ZIP file header parts so, that Python based automated analysis tools are unable to process the contents of the ZIP file but intended clients are able to open the file and extract the possibly malicious contents.

Github pull request contains patch addressing the issue so that developer can make conscious decision to allow extraction process to complete. Quite important feature for security researchers.
History
Date User Action Args
2017-08-10 13:05:08zyxtarmosetrecipients: + zyxtarmo
2017-08-10 13:05:08zyxtarmosetmessageid: <1502370308.59.0.330372218363.issue31175@psf.upfronthosting.co.za>
2017-08-10 13:05:08zyxtarmolinkissue31175 messages
2017-08-10 13:05:07zyxtarmocreate