Message260038
To move forward on this, I would like someone else (hopefully Antoine? :) to confirm my theory about the cookie injection attack, or otherwise explain why the patch won’t (re)open any security holes. Also, I would like to add some more test cases based on Sergey Bobrov’s post (especially the from the heading Особенности обработки Cookie #3). |
|
Date |
User |
Action |
Args |
2016-02-10 21:04:56 | martin.panter | set | recipients:
+ martin.panter, pitrou, r.david.murray, Tim.Graham, collinanderson, Pathangi Jatinshravan, harris |
2016-02-10 21:04:56 | martin.panter | set | messageid: <1455138296.56.0.404818262381.issue25228@psf.upfronthosting.co.za> |
2016-02-10 21:04:56 | martin.panter | link | issue25228 messages |
2016-02-10 21:04:56 | martin.panter | create | |
|