[issue22885] Arbitrary code execution vulnerability due to unchecked eval() call in dumbdbm module
Serhiy Storchaka
report at bugs.python.org
Sat Jan 24 11:53:49 CET 2015
Serhiy Storchaka added the comment:
I mean that raising dbm.dumb.error is different issue unrelated to changing eval to ast.literal_eval. See also Raymond's objections in issue21708.
issue22885.patch LGTM.
----------
nosy: +rhettinger
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue22885>
_______________________________________
More information about the Python-bugs-list
mailing list