[issue20246] buffer overflow in socket.recvfrom_into
Nick Coghlan
report at bugs.python.org
Tue Feb 25 08:43:05 CET 2014
Nick Coghlan added the comment:
Branch status:
Vulnerable (last release prior to patch):
2.7.6
3.1.5
3.2.5
Fixed (latest release post patch):
3.3.4+
3.4
So my reading is that 2.7.7 needs to be brought forward, and source only releases of 3.1.6 and 3.2.6 should be published.
It also sounds like there's a missing trigger that automatically notifies PSRT when someone else classifies a bug as a security bug.
----------
nosy: +ncoghlan
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue20246>
_______________________________________
More information about the Python-bugs-list
mailing list