[issue11259] asynchat
Марк Коренберг
report at bugs.python.org
Sun Feb 20 17:40:02 CET 2011
New submission from Марк Коренберг <socketpair at gmail.com>:
asynchat does not check if terminator is negative integer. so constructions like self.ac_in_buffer[:n] will lead to misbehaviour.
When that integer goes from net, attack can be crafted. For example, on Content-Length field.
----------
components: Library (Lib)
messages: 128914
nosy: mmarkk
priority: normal
severity: normal
status: open
title: asynchat
type: security
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue11259>
_______________________________________
More information about the Python-bugs-list
mailing list