This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author martin.panter
Recipients Pathangi Jatinshravan, Tim.Graham, collinanderson, harris, martin.panter, pitrou, r.david.murray
Date 2016-02-10.21:04:56
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
To move forward on this, I would like someone else (hopefully Antoine? :) to confirm my theory about the cookie injection attack, or otherwise explain why the patch won’t (re)open any security holes. Also, I would like to add some more test cases based on Sergey Bobrov’s post (especially the from the heading Особенности обработки Cookie #3).
Date User Action Args
2016-02-10 21:04:56martin.pantersetrecipients: + martin.panter, pitrou, r.david.murray, Tim.Graham, collinanderson, Pathangi Jatinshravan, harris
2016-02-10 21:04:56martin.pantersetmessageid: <>
2016-02-10 21:04:56martin.panterlinkissue25228 messages
2016-02-10 21:04:56martin.pantercreate