Author serhiy.storchaka
Recipients python-dev, serhiy.storchaka, vstinner
Date 2016-05-20.14:07:49
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1463753269.69.0.834606005526.issue27056@psf.upfronthosting.co.za>
In-reply-to
Content
I think that integer overflow in _Unpickler_Read() is possible. n is read from file and can be arbitrary (up to PY_SSIZE_T_MAX). This likely cause raising an exception later, but integer overflow itself causes undefined behavior, and we should avoid it.
History
Date User Action Args
2016-05-20 14:07:49serhiy.storchakasetrecipients: + serhiy.storchaka, vstinner, python-dev
2016-05-20 14:07:49serhiy.storchakasetmessageid: <1463753269.69.0.834606005526.issue27056@psf.upfronthosting.co.za>
2016-05-20 14:07:49serhiy.storchakalinkissue27056 messages
2016-05-20 14:07:49serhiy.storchakacreate