[New-bugs-announce] [issue46707] Parser hanging on stacked { tokens
anthony shaw
report at bugs.python.org
Wed Feb 9 22:00:43 EST 2022
New submission from anthony shaw <anthonyshaw at apache.org>:
Providing an (invalid) input to the parser causes an exponentially-slow DoS to the Python executable in 3.10.
e.g.
python3.10 -c "{{{{{{{{{{{{{{{{{{{{{:"
takes ~2 seconds
python3.10 -c "{{{{{{{{{{{{{{{{{{{{{{{{:"
takes ~22 seconds
Tested this all the way up to
d{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{```{{{{{{{ef f():y
which took over an hour
----------
components: Parser
keywords: 3.10regression
messages: 412972
nosy: anthonypjshaw, lys.nikolaou, pablogsal
priority: normal
severity: normal
status: open
title: Parser hanging on stacked { tokens
type: crash
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue46707>
_______________________________________
More information about the New-bugs-announce
mailing list