from:"Insu Yun"

[issue26171] heap overflow in zipimporter module

2016-01-21 Thread Insu Yun

Insu Yun added the comment: in zipimport.c 1116 bytes_size = compress == 0 ? data_size : data_size + 1; 1117 if (bytes_size == 0) 1118 bytes_size++; 1119 raw_data = PyBytes_FromStringAndSize((char *)NULL, bytes_size); If compress != 0, then bytes_size = data_size + 1

[issue26171] heap overflow in zipimporter module

2016-01-20 Thread Insu Yun

New submission from Insu Yun: in zipimport.c 1116 bytes_size = compress == 0 ? data_size : data_size + 1; 1117 if (bytes_size == 0) 1118 bytes_size++; 1119 raw_data = PyBytes_FromStringAndSize((char *)NULL, bytes_size); If compress != 0, then bytes_size = data_size