[issue42103] [security] DoS (MemError via CPU and RAM exhaustion) when processing malformed Apple Property List files in binary format
Ronald Oussoren
report at bugs.python.org
Thu Oct 22 05:40:45 EDT 2020
Ronald Oussoren <ronaldoussoren at mac.com> added the comment:
Serhiy, thanks. Just the change in the format string would fix this particular example.
I see you're working on a PR with better validation. The current state of the draft looks good to me, but I haven't checked yet if there are other potential problems that can be added to the list of invalid binary plists.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue42103>
_______________________________________
More information about the Python-bugs-list
mailing list