yeah that's right.
Maybe the real question is, if they don't know how secure an int overflow in
imageop module, maybe other modules are vulns too.
I think nobody really take the time to audit python source code, when i
found the vuln in ten minutes just for proof to a friend that's python isn't
mo
On 15 Sep 07, at 16:53, Slythers Bro wrote:
> The module imageop contains a lots of int overflow, which result in
> heap overflow, and maybe memory dump.
> The files imageop.c and rbgimgmodule.c are examples.
The real question: Does anybody actually use those modules? Most
Python programs tha
The module imageop contains a lots of int overflow, which result in heap
overflow, and maybe memory dump.
The files imageop.c and rbgimgmodule.c are examples.
static PyObject *
imageop_tovideo(PyObject *self, PyObject *args)
{
int maxx, maxy, x, y, len;
/* **
