Message 158199 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	v+python
Recipients	orsenthil, v+python
Date	2012-04-13.08:02:47
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1334304167.85.0.0823682408865.issue14567@psf.upfronthosting.co.za>
In-reply-to

Content
A bit of experimentation indicates that for regular file access, there probably is no security problem, but bad paths will look in weird places, and if they find a file of the right name, will return it. It would be much better to diagnose such paths. There is even a comment to that effect in translate_path.

A bit of experimentation indicates that for regular file access, there probably is no security problem, but bad paths will look in weird places, and if they find a file of the right name, will return it. It would be much better to diagnose such paths.  There is even a comment to that effect in translate_path.

History
Date	User	Action	Args
2012-04-13 08:02:47	v+python	set	recipients: + v+python, orsenthil
2012-04-13 08:02:47	v+python	set	messageid: <1334304167.85.0.0823682408865.issue14567@psf.upfronthosting.co.za>
2012-04-13 08:02:47	v+python	link	issue14567 messages
2012-04-13 08:02:47	v+python	create