]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f52bf62) | patch
[3.5] bpo-39017: Avoid infinite loop in the tarfile module (GH-21454) (#21489)
authorPetr Viktorin <encukou@gmail.com>
Thu, 16 Jul 2020 19:48:01 +0000 (21:48 +0200)
committerGitHub <noreply@github.com>
Thu, 16 Jul 2020 19:48:01 +0000 (12:48 -0700)
commitcac9ca8ed99bd98f4c0dcd1913a146192bf5ee84
tree9532089be9064f42f8e6a4a22bcac186fe8c3445tree | snapshot
parentf52bf62fe12d46267e958f80dbe1f4425b55cd0fcommit | diff
[3.5] bpo-39017: Avoid infinite loop in the tarfile module (GH-21454) (#21489)

Avoid infinite loop when reading specially crafted TAR files using the tarfile module
(CVE-2019-20907).
(cherry picked from commit 5a8d121a1f3ef5ad7c105ee378cc79a3eac0c7d4)

Co-authored-by: Rishi <rishi_devan@mail.com>
Lib/tarfile.py diff | blob | blame | history
Lib/test/recursion.tar [new file with mode: 0644] blob
Lib/test/test_tarfile.py diff | blob | blame | history
Misc/NEWS.d/next/Library/2020-07-12-22-16-58.bpo-39017.x3Cg-9.rst [new file with mode: 0644] blob
Mirror of https://github.com/python/cpython.git