[issue13301] the script Tools/i18n/msgfmt.py allows arbitrary code execution via po files
David Jean Louis
report at bugs.python.org
Mon Oct 31 11:06:24 CET 2011
David Jean Louis <izimobil at gmail.com> added the comment:
Hmm, I missed your previous message, indeed, unescaping is not handled by this patch, sorry about that. Here's how it is handled in polib:
https://bitbucket.org/izi/polib/src/dbafdc621bf4/polib.py#cl-206
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue13301>
_______________________________________
More information about the Python-bugs-list
mailing list