subject:"\[issue26171\] heap overflow in zipimporter module"

[issue26171] heap overflow in zipimporter module

2018-08-04 Thread Matej Cepl

Change by Matej Cepl : -- nosy: +mcepl ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue26171] heap overflow in zipimporter module

2017-05-21 Thread Berker Peksag

Changes by Berker Peksag : -- pull_requests: -1794 ___ Python tracker ___ ___

[issue26171] heap overflow in zipimporter module

2017-05-21 Thread Jimmy Lai

Changes by Jimmy Lai : -- pull_requests: +1794 ___ Python tracker ___ ___ Python-bugs-list

[issue26171] heap overflow in zipimporter module

2016-10-08 Thread Ned Deily

Changes by Ned Deily : -- priority: release blocker -> versions: +Python 2.7, Python 3.4, Python 3.5, Python 3.6 ___ Python tracker ___

[issue26171] heap overflow in zipimporter module

2016-10-08 Thread Ned Deily

Ned Deily added the comment: Parvesh, we only maintain the latest micro release of a release cycle; for 2.7, that is currently 2.7.12. In other words, once 2.7.9 was released, 2.7.8 was no longer supported by us (although, of course, downstream distributors of Cpython can choose to backport

[issue26171] heap overflow in zipimporter module

2016-10-06 Thread Parvesh jain

Parvesh jain added the comment: I think patches put up in http://bugs.python.org/msg258736 is at least not sufficient enough for Python 2.7. POC script(crash.py) provided with the issue calls get_data with data_size = -1. I am using Python 2.7.8 . I patched the same with the solution provided

[issue26171] heap overflow in zipimporter module

2016-09-13 Thread Berker Peksag

Berker Peksag added the comment: Thanks! -- nosy: +berker.peksag resolution: -> fixed stage: needs patch -> resolved status: open -> closed ___ Python tracker

[issue26171] heap overflow in zipimporter module

2016-09-13 Thread Roundup Robot

Roundup Robot added the comment: New changeset 5ae8756a1ae0 by Berker Peksag in branch '3.3': Issue #26171: Prevent buffer overflow in get_data https://hg.python.org/cpython/rev/5ae8756a1ae0 New changeset fa006d671f41 by Berker Peksag in branch '3.4': Issue #26171: Null merge

[issue26171] heap overflow in zipimporter module

2016-09-09 Thread Christian Heimes

Changes by Christian Heimes : -- priority: -> release blocker versions: +Python 3.3 -Python 2.7, Python 3.4, Python 3.5, Python 3.6 ___ Python tracker

[issue26171] heap overflow in zipimporter module

2016-06-24 Thread Vlad K.

Vlad K. added the comment: Any updates on this? We've committed the patch for Python 3.3 as well in FreeBSD. https://svnweb.freebsd.org/ports?view=revision=417019 -- ___ Python tracker

[issue26171] heap overflow in zipimporter module

2016-06-16 Thread Vlad K.

Vlad K. added the comment: Here's the patch that I made for FreeBSD's Python 3.3 port. With this patch, on FreeBSD, Python 3.3 built fine and passed the zipimport related unit tests. It's basically the same code from 3.4, 3.5 and 2.7, just placed at appropriate place in the source.

[issue26171] heap overflow in zipimporter module

2016-06-16 Thread Ned Deily

Ned Deily added the comment: reopening for 3.3.7 evaluation. Georg? -- nosy: +georg.brandl, ned.deily priority: normal -> resolution: fixed -> stage: resolved -> needs patch status: closed -> open versions: +Python 3.3 ___ Python tracker

[issue26171] heap overflow in zipimporter module

2016-06-16 Thread Vlad K.

Vlad K. added the comment: I believe this should be applied to Python 3.3 as well, since the same problem (unchecked data_size before adding +1 for bytes_size) exists there too, and is thus a security issue. -- nosy: +vladk ___ Python tracker

[issue26171] heap overflow in zipimporter module

2016-06-16 Thread STINNER Victor

Changes by STINNER Victor : -- versions: +Python 2.7, Python 3.4, Python 3.5 ___ Python tracker ___

[issue26171] heap overflow in zipimporter module

2016-01-21 Thread Insu Yun

Insu Yun added the comment: in zipimport.c 1116 bytes_size = compress == 0 ? data_size : data_size + 1; 1117 if (bytes_size == 0) 1118 bytes_size++; 1119 raw_data = PyBytes_FromStringAndSize((char *)NULL, bytes_size); If compress != 0, then bytes_size = data_size + 1

[issue26171] heap overflow in zipimporter module

2016-01-20 Thread Insu Yun

New submission from Insu Yun: in zipimport.c 1116 bytes_size = compress == 0 ? data_size : data_size + 1; 1117 if (bytes_size == 0) 1118 bytes_size++; 1119 raw_data = PyBytes_FromStringAndSize((char *)NULL, bytes_size); If compress != 0, then bytes_size = data_size +

[issue26171] heap overflow in zipimporter module

2016-01-20 Thread Roundup Robot

Roundup Robot added the comment: New changeset 01ddd608b85c by Benjamin Peterson in branch '3.4': prevent buffer overflow in get_data (closes #26171) https://hg.python.org/cpython/rev/01ddd608b85c New changeset 985fc64c60d6 by Benjamin Peterson in branch '2.7': prevent buffer overflow in

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

[issue26171] heap overflow in zipimporter module

17 matches

Site Navigation

Mail list logo

Footer information