git.ipfire.org Git - thirdparty/Python/cpython.git/commit

[3.12] gh-102988: Detect email address parsing errors and return empty tuple to indicate the parsing error (old API) (GH-105127) (#106612)

gh-102988: Detect email address parsing errors and return empty tuple to indicate the parsing error (old API) (GH-105127)

Detect email address parsing errors and return empty tuple to indicate the parsing error (old API). This fixes or at least ameliorates CVE-2023-27043.

---------

(cherry picked from commit 18dfbd035775c15533d13a98e56b1d2bf5c65f00)

Co-authored-by: Thomas Dwyer <github@tomd.tel>
Co-authored-by: Gregory P. Smith <greg@krypto.org>

author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
	Mon, 10 Jul 2023 23:38:42 +0000 (16:38 -0700)
committer	GitHub <noreply@github.com>
	Mon, 10 Jul 2023 23:38:42 +0000 (23:38 +0000)
commit	30870c834ce0e47cc689b56aed7ac468f6e1c1ad
tree	1634c849963f7a0720fea66ab0ca840a19d0b966	tree \| snapshot
parent	90ea3be6fbee1520dd3e9344c71123e15fcbe6f2	commit \| diff

Doc/library/email.utils.rst		diff \| blob \| blame \| history
Doc/whatsnew/3.12.rst		diff \| blob \| blame \| history
Lib/email/utils.py		diff \| blob \| blame \| history
Lib/test/test_email/test_email.py		diff \| blob \| blame \| history
Misc/NEWS.d/next/Security/2023-06-13-20-52-24.gh-issue-102988.Kei7Vf.rst	[new file with mode: 0644]	blob