[issue13703] Hash collision security issue
Antoine Pitrou
report at bugs.python.org
Mon Jan 23 14:56:34 CET 2012
Antoine Pitrou <pitrou at free.fr> added the comment:
> With an collision counting exception you'd get a clear notice that
> something in your data and your application is wrong and needs
> fixing. The rest of your web app will continue to work fine
Except when it doesn't, because you've also broken batch processing
functions and the like.
> Note: Even if Python works around the problem successfully, there's no
> guarantee that the data doesn't end up being processed by some other
> tool in the chain with similar problems.
Non-Python tools don't use Python's hash functions, they are therefore
not vulnerable to the same data.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue13703>
_______________________________________
More information about the Python-bugs-list
mailing list