[Python-bugs-list] [ python-Bugs-500401 ] Security fix: webbrowser.py
noreply@sourceforge.net
noreply@sourceforge.net
Mon, 07 Jan 2002 07:32:07 -0800
Bugs item #500401, was opened at 2002-01-07 06:28
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=105470&aid=500401&group_id=5470
Category: Python Library
Group: None
>Status: Closed
>Resolution: Fixed
Priority: 9
Submitted By: Gregor Hoffleit (flight)
Assigned to: Fred L. Drake, Jr. (fdrake)
Summary: Security fix: webbrowser.py
Initial Comment:
Chris Lawrence <lawrencc@debian.org> reports a security
hole in webbrowser.py (cf.
http://bugs.debian.org/127507 for the full report):
webbrowser.py doesn't escape the URL when calling the
browser through os.system(). This makes it possible for
an attacker to execute arbitrary code in /bin/sh.
Attached is a patch by Chris that closes the holes.
Gregor
----------------------------------------------------------------------
>Comment By: Fred L. Drake, Jr. (fdrake)
Date: 2002-01-07 07:32
Message:
Logged In: YES
user_id=3066
Fixed in Lib/webbrowser.py 1.27, 1.26.6.1, and 1.18.2.3 (to
be part of Python versions 2.1.2, 2.2.1, and 2.3).
Would someone who understands the Debian bug reporting
system please pass the word to them? Thanks!
----------------------------------------------------------------------
Comment By: Guido van Rossum (gvanrossum)
Date: 2002-01-07 07:09
Message:
Logged In: YES
user_id=6380
Let's also get the fix into 2.1.2 and 2.2.1.
----------------------------------------------------------------------
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=105470&aid=500401&group_id=5470