Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from http://mail.python.org/pipermail/python-dev/2000-August/008975.html below:

[Python-Dev] Cookie.py security

• Previous message: [Python-Dev] Cookie.py security
• Next message: [Python-Dev] Cookie.py security
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>>>>> "GS" == Greg Stein <gstein@lyra.org> writes:

  GS> On Wed, Aug 30, 2000 at 09:21:23PM -0400, Jeremy Hylton wrote:
  >> ...  But neither marshal nor pickle is safe.  It is possible to
  >> cause a core dump by passing marshal invalid data.  It may also
  >> be possible to launch a stack overflow attack -- not sure.

  GS> I believe those core dumps were fixed. Seems like I remember
  GS> somebody doing some work on that.

  GS> ??

Aha!  I hadn't notice that patch sneaking in.  I brought it up with
Guido a few months ago and he didn't want to make changes to marshal
because, IIRC, marshal exists only because .pyc files need it.

Jeremy

• Previous message: [Python-Dev] Cookie.py security
• Next message: [Python-Dev] Cookie.py security
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4