Raymond Hettinger added the comment: > Should this be categorized as a security issue? > You could easily DoS a server with that > (email.parser is used by http.client to parse HTTP > headers, it seems).
I think it makes sense to treat this as a security issue. I don't have a preference about whether to use Serhiy's email_parser_long_lines.patch or my fix_email_parse2.diff but we should include the extra tests in test_parser.diff. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue21448> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
