Message93336
zf.extract() is unsafe for the same reason. My patch fixes this issue,
but we should mention the possible bug in the documentation there as
well. They do this for the similar bug in tarfile.
I've copy/pasted the mention in tarfile.extract() to zipfile.extract()
into the diff. |
|
Date |
User |
Action |
Args |
2009-09-29 22:36:25 | twb | set | recipients:
+ twb, gregory.p.smith, amaury.forgeotdarc, schmir, r.david.murray |
2009-09-29 22:36:25 | twb | set | messageid: <1254263785.3.0.853522100407.issue6972@psf.upfronthosting.co.za> |
2009-09-29 22:36:23 | twb | link | issue6972 messages |
2009-09-29 22:36:23 | twb | create | |
|