[issue30730] [security] Injecting environment variable in subprocess on Windows
Serhiy Storchaka
report at bugs.python.org
Sat Jul 1 01:13:43 EDT 2017
Serhiy Storchaka added the comment:
Yes, fsencode() already rejected embedded nulls, that is why the Posix branch doesn't need additional check for null characters. The Posix branch was changed only for adding the check for the '=' character in names.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue30730>
_______________________________________
More information about the Python-bugs-list
mailing list