Message 228824 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	Kevin.Dyer
Recipients	Kevin.Dyer, josh.r
Date	2014-10-09.00:04:23
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1412813063.51.0.473204919096.issue22583@psf.upfronthosting.co.za>
In-reply-to

Content
Gotcha. Thanks for the explanation. Two questions: 1) Given that it's probably not an out-of-memory issue, is it possible that this could turn into something more malicious? (e.g., an arbitrary code execution vulnerability?) 2) It's not obvious to me why eval-ing arbitrary user input doesn't count. Isn't an interpreter segfault a bad thing, even if it's a somewhat degenerate use case?

Gotcha. Thanks for the explanation.

Two questions:

1) Given that it's probably not an out-of-memory issue, is it possible that this could turn into something more malicious? (e.g., an arbitrary code execution vulnerability?)
2) It's not obvious to me why eval-ing arbitrary user input doesn't count. Isn't an interpreter segfault a bad thing, even if it's a somewhat degenerate use case?

History
Date	User	Action	Args
2014-10-09 00:04:23	Kevin.Dyer	set	recipients: + Kevin.Dyer, josh.r
2014-10-09 00:04:23	Kevin.Dyer	set	messageid: <1412813063.51.0.473204919096.issue22583@psf.upfronthosting.co.za>
2014-10-09 00:04:23	Kevin.Dyer	link	issue22583 messages
2014-10-09 00:04:23	Kevin.Dyer	create