[issue5753] CVE-2008-5983 python: untrusted python modules search path
Antoine Pitrou
report at bugs.python.org
Tue May 4 16:09:49 CEST 2010
Antoine Pitrou <pitrou at free.fr> added the comment:
> Can anyone move this to Stage: patch review (for the fix approach
> proposed in msg90336)? Or does anyone have better idea on how to move
> this closer to final fix or wontfix / reject? Thank you!
I stand by my opinion that adding another hack in the initialization
path will not do us a lot of good, while a separate API would solve the
problem neatly. Perhaps Dave Malcolm can chime in?
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue5753>
_______________________________________
More information about the Python-bugs-list
mailing list