STINNER Victor <vstin...@python.org> added the comment:
> Thanks for the report. There is a policy to report security vulnerabilities > in CPython : https://www.python.org/news/security/. The private security mailing list has been contacted first and we advice to open a public issue since we consider that it's not a major security issue. To exploit this bug, the attacker has to control the XML-RPC server title. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <https://bugs.python.org/issue38243> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
