Message359720
My approach is that any input that's unexpected by the developer but accepted by the program could cause either a bug or a security problem, and should be rejected by the program. I don't have a specific example for this case.
If you think I need to come up with a specific example where this can be misused, or show that there are no computers in the world that willingly use the version number with non-Ascii digits, I'll let this issue go. |
|
Date |
User |
Action |
Args |
2020-01-10 11:37:43 | cool-RR | set | recipients:
+ cool-RR, ezio.melotti |
2020-01-10 11:37:43 | cool-RR | set | messageid: <1578656263.13.0.219772977572.issue39279@roundup.psfhosted.org> |
2020-01-10 11:37:43 | cool-RR | link | issue39279 messages |
2020-01-10 11:37:43 | cool-RR | create | |
|