Author tom.pohl
Recipients docs@python, eryksun, tom.pohl
Date 2015-08-07.19:41:54
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1438976514.93.0.0624641056926.issue24823@psf.upfronthosting.co.za>
In-reply-to
Content
I agree: not every buffer is null-terminated.

But the function name suggests that it creates a _string_ buffer which will most likely be used as an input to a C function. There, it can easily trigger a buffer overflow without a null termination which can be considered a severe security risk.
History
Date User Action Args
2015-08-07 19:41:55tom.pohlsetrecipients: + tom.pohl, docs@python, eryksun
2015-08-07 19:41:54tom.pohlsetmessageid: <1438976514.93.0.0624641056926.issue24823@psf.upfronthosting.co.za>
2015-08-07 19:41:54tom.pohllinkissue24823 messages
2015-08-07 19:41:54tom.pohlcreate