STINNER Victor <vstin...@redhat.com> added the comment:
Python 2.7 is not affected: * Python 2.7 has no C accelerator _pickle (Modules/_pickle.c) * Python 2.7 doesn't support protocol 4 (attached proof of concept) I reopen the issue because the issue should be fixed in 3.4 and 3.5 as well, since it has been marked as a vulnerability (it got a CVE number). ---------- nosy: +vstinner resolution: fixed -> status: closed -> open versions: +Python 3.4, Python 3.5, Python 3.6, Python 3.7 _______________________________________ Python tracker <rep...@bugs.python.org> <https://bugs.python.org/issue34656> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com