]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8161afe) | patch
gh-113977, gh-120754: Remove unbounded reads from zipfile (GH-122101)
authorCody Maloney <cmaloney@users.noreply.github.com>
Sun, 3 Nov 2024 05:28:51 +0000 (22:28 -0700)
committerGitHub <noreply@github.com>
Sun, 3 Nov 2024 05:28:51 +0000 (22:28 -0700)
commit556dc9b8a78bad296513221f3f414a3f8fd0ae70
tree610404e369536bded8094df5134c2428ddaed3b2tree | snapshot
parent8161afe51c65afbf0332da58837d94975cec9f65commit | diff
gh-113977, gh-120754: Remove unbounded reads from zipfile (GH-122101)

GH-113977, GH-120754: Remove unbounded reads from zipfile

Read without a size may read an unbounded amount of data + allocate
unbounded size buffers. Move to capped size reads to prevent potential
issues.

Co-authored-by: Daniel Hillier <daniel.hillier@gmail.com>
Co-authored-by: blurb-it[bot] <43283697+blurb-it[bot]@users.noreply.github.com>
Lib/zipfile/__init__.py diff | blob | blame | history
Misc/NEWS.d/next/Library/2024-07-23-02-24-50.gh-issue-120754.nHb5mG.rst [new file with mode: 0644] blob
Mirror of https://github.com/python/cpython.git