[New-bugs-announce] [issue11259] asynchat

Марк Коренберг report at bugs.python.org
Sun Feb 20 17:40:02 CET 2011

New submission from Марк Коренберг <socketpair at gmail.com>:

asynchat does not check if terminator is negative integer. so constructions like self.ac_in_buffer[:n] will lead to misbehaviour.

When that integer goes from net, attack can be crafted. For example, on Content-Length field.

components: Library (Lib)
messages: 128914
nosy: mmarkk
priority: normal
severity: normal
status: open
title: asynchat
type: security

Python tracker <report at bugs.python.org>

More information about the New-bugs-announce mailing list