[issue6972] zipfile.ZipFile overwrites files outside destination path
Thomas W. Barr
report at bugs.python.org
Wed Sep 30 00:36:25 CEST 2009
Thomas W. Barr <twb at rice.edu> added the comment:
zf.extract() is unsafe for the same reason. My patch fixes this issue,
but we should mention the possible bug in the documentation there as
well. They do this for the similar bug in tarfile.
I've copy/pasted the mention in tarfile.extract() to zipfile.extract()
into the diff.
----------
Added file: http://bugs.python.org/file15004/extract-doc.diff
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue6972>
_______________________________________
More information about the Python-bugs-list
mailing list