This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author socketpair
Recipients socketpair
Date 2011-02-20.16:40:01
SpamBayes Score 0.012761
Marked as misclassified No
Message-id <>
asynchat does not check if terminator is negative integer. so constructions like self.ac_in_buffer[:n] will lead to misbehaviour.

When that integer goes from net, attack can be crafted. For example, on Content-Length field.
Date User Action Args
2011-02-20 16:40:02socketpairsetrecipients: + socketpair
2011-02-20 16:40:02socketpairsetmessageid: <>
2011-02-20 16:40:01socketpairlinkissue11259 messages
2011-02-20 16:40:01socketpaircreate