[issue5753] CVE-2008-5983 python: untrusted python modules search path
"Martin v. Löwis" <report@bugs.python.org> at psf.upfronthosting.co.za
"Martin v. Löwis" <report@bugs.python.org> at psf.upfronthosting.co.za
Tue May 5 23:25:46 CEST 2009
Martin v. Löwis <martin at v.loewis.de> added the comment:
> What's the question of 'security nature' of the issue, Glyph in
> message #msg86927 already uncovered potential implications --
The question is whether these are theoretical or real problems.
I ran gedit (as proposed by Glyph) under strace(1), and it didn't
try to open any files in the current directory.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue5753>
_______________________________________
More information about the Python-bugs-list
mailing list