[New-bugs-announce] [issue41288] Pickle crashes using a crafted datetime object
Iman Sharafodin
report at bugs.python.org
Sun Jul 12 17:36:09 EDT 2020
New submission from Iman Sharafodin <iman.sharafodin at gmail.com>:
The following code generates a segfault on the Pickle module [it's a crafted datetime object] (Python 3.10.0a0 (heads/master:b40e434, Jul 4 2020), Python 3.6.11 and Python 3.7.2):
import io
import pickle
hex_string = "8004952A000000000000008C086461746574696D65948C086461746574696D65949388430A07B2010100000000000092059452942E"
myb = bytes.fromhex(hex_string)
f = io.BytesIO(myb)
print(f)
data = pickle.load(f)
print(data)
print('We have segfault but we cannot see!')
----------
components: Interpreter Core
messages: 373573
nosy: Iman Sharafodin
priority: normal
severity: normal
status: open
title: Pickle crashes using a crafted datetime object
type: crash
versions: Python 3.10
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue41288>
_______________________________________
More information about the New-bugs-announce
mailing list