[issue1298813] sysmodule.c: realpath() is unsafe

2016-09-08 Thread Christian Heimes
Christian Heimes added the comment: Victor, #12801 was closed. What about this ticket? -- status: open -> pending ___ Python tracker ___ ___

[issue1298813] sysmodule.c: realpath() is unsafe

2014-02-03 Thread Arfrever Frehtes Taifersar Arahesis
Changes by Arfrever Frehtes Taifersar Arahesis : -- nosy: +Arfrever ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubsc

[issue1298813] sysmodule.c: realpath() is unsafe

2014-02-03 Thread Mark Lawrence
Changes by Mark Lawrence : -- nosy: -BreamoreBoy ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mai

[issue1298813] sysmodule.c: realpath() is unsafe

2013-07-05 Thread Christian Heimes
Changes by Christian Heimes : -- nosy: +christian.heimes versions: +Python 3.4 ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue1298813] sysmodule.c: realpath() is unsafe

2011-08-24 Thread STINNER Victor
STINNER Victor added the comment: See issue #12801: it has a more recent patch. -- ___ Python tracker ___ ___ Python-bugs-list mail

[issue1298813] sysmodule.c: realpath() is unsafe

2011-08-21 Thread Mihai Ibanescu
Mihai Ibanescu added the comment: It's a real shame the original patch was not applied before py3k was branched, the code is now different. Antoine, my autoconf knowledge is limited, I don't know how you'd test for realpath accepting a NULL argument (and doing the right thing) at compile time

[issue1298813] sysmodule.c: realpath() is unsafe

2011-08-21 Thread Éric Araujo
Changes by Éric Araujo : -- versions: -Python 2.6, Python 3.1 ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue1298813] sysmodule.c: realpath() is unsafe

2011-08-20 Thread Antoine Pitrou
Antoine Pitrou added the comment: The latest POSIX versions (*) allow NULL to be passed for the target memory area, meaning that realpath() will allocate as much memory as necessary by itself. This essentially does the same thing as canonicalize_file_name(), but in a standard way rather than

[issue1298813] sysmodule.c: realpath() is unsafe

2010-08-21 Thread Éric Araujo
Changes by Éric Araujo : -- versions: +Python 2.7, Python 3.2 -Python 3.0 ___ Python tracker ___ ___ Python-bugs-list mailing list U

[issue1298813] sysmodule.c: realpath() is unsafe

2010-08-21 Thread Mark Lawrence
Mark Lawrence added the comment: Surely this security issue should be addressed? -- nosy: +BreamoreBoy ___ Python tracker ___ ___ P

[issue1298813] sysmodule.c: realpath() is unsafe

2009-06-22 Thread jan matejek
Changes by jan matejek : -- nosy: +matejcik ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http://mail.pytho

[issue1298813] sysmodule.c: realpath() is unsafe

2009-05-08 Thread Mihai Ibanescu
Mihai Ibanescu added the comment: Disclaimer: this bug is more than 3 years old, I don't remember all the details. Victor, solely reading the patch I see: +#ifdef HAVE_CANONICALIZE_FILE_NAME + free(argv0); +#endif /* HAVE_CANONICALIZE_FILE_NAME */ so argv0 (the string where the

[issue1298813] sysmodule.c: realpath() is unsafe

2009-05-03 Thread STINNER Victor
STINNER Victor added the comment: The patch introduces a memory leak, canonicalize_file_name() returns a new allocated string which is not freed later. -- ___ Python tracker

[issue1298813] sysmodule.c: realpath() is unsafe

2009-04-25 Thread Daniel Diniz
Daniel Diniz added the comment: See http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-1542 -- nosy: +ajaksu2, haypo stage: -> test needed versions: +Python 2.6, Python 3.0, Python 3.1 -Python 2.5 ___ Python tracker

[issue1298813] sysmodule.c: realpath() is unsafe

2008-01-11 Thread A.M. Kuchling
Changes by A.M. Kuchling: -- type: -> security _ Tracker <[EMAIL PROTECTED]> _ ___ Python-bugs-list mailing list Unsubscribe: http