[issue14579] Vulnerability in the utf-16 decoder after error handling
Martin v. Löwis
report at bugs.python.org
Tue Apr 24 14:07:21 CEST 2012
Martin v. Löwis <martin at v.loewis.de> added the comment:
Now I see the problem: make_decode_exception creates a new bytes object in any case, regardless of whether the error handler will update it or not. Therefore, decoding will continue in this new bytes object.
I think the same issue also applies to the ASCII decoder in 3.3.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue14579>
_______________________________________
More information about the Python-bugs-list
mailing list