[issue29778] [CVE-2020-15523] _Py_CheckPython3 uses uninitialized dllpath when embedder sets module path with Py_SetPath
Larry Hastings
report at bugs.python.org
Thu Jul 16 21:54:45 EDT 2020
Larry Hastings <larry at hastings.org> added the comment:
I must have taken my stupid pills today. Why is this considered a "security" "release blocker"? If you can put files in the root of the hard drive where Windows was installed, surely you have other, easier attack vectors.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue29778>
_______________________________________
More information about the Python-bugs-list
mailing list