]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3f607a0) | patch
[3.12] gh-109858: Protect zipfile from "quoted-overlap" zipbomb (GH-110016) (GH-113912)
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Thu, 11 Jan 2024 09:24:29 +0000 (10:24 +0100)
committerGitHub <noreply@github.com>
Thu, 11 Jan 2024 09:24:29 +0000 (11:24 +0200)
commitfa181fcf2156f703347b03a3b1966ce47be8ab3b
tree132a170b2a818288b239e0317f32fe9aa7c20dectree | snapshot
parent3f607a03242e98ec6ff141fa9bd27ebfb46c7519commit | diff
[3.12] gh-109858: Protect zipfile from "quoted-overlap" zipbomb (GH-110016) (GH-113912)

Raise BadZipFile when try to read an entry that overlaps with other entry or
central directory.
(cherry picked from commit 66363b9a7b9fe7c99eba3a185b74c5fdbf842eba)

Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
Lib/test/test_zipfile/test_core.py diff | blob | blame | history
Lib/zipfile/__init__.py diff | blob | blame | history
Misc/NEWS.d/next/Library/2023-09-28-13-15-51.gh-issue-109858.43e2dg.rst [new file with mode: 0644] blob
Mirror of https://github.com/python/cpython.git