Issue 17872: Crash in marshal.load() with bad reader (original) (raw)

Issue17872

Created on 2013-04-29 21:29 by serhiy.storchaka, last changed 2022-04-11 14:57 by admin. This issue is now closed.

Messages (4)
msg188107 - (view)	Author: Serhiy Storchaka (serhiy.storchaka) *	Date: 2013-04-29 21:29
There is a buffer overflow in marshal.load() when len(read(n)) > n. Here is a sample.
msg189690 - (view)	Author: Serhiy Storchaka (serhiy.storchaka) *	Date: 2013-05-20 20:33
And here is a fix.
msg190210 - (view)	Author: Serhiy Storchaka (serhiy.storchaka) *	Date: 2013-05-28 13:45
Could anyone review a patch please?
msg192889 - (view)	Author: Roundup Robot (python-dev)	Date: 2013-07-11 19:31
New changeset fc7bab8a8618 by Serhiy Storchaka in branch '3.3': Issue #17872: Fix a segfault in marshal.load() when input stream returns http://hg.python.org/cpython/rev/fc7bab8a8618 New changeset 5fa793ae36cc by Serhiy Storchaka in branch 'default': Issue #17872: Fix a segfault in marshal.load() when input stream returns http://hg.python.org/cpython/rev/5fa793ae36cc

History
Date	User	Action	Args
2022-04-11 14:57:45	admin	set	github: 62072
2013-07-14 12:38:58	serhiy.storchaka	set	status: pending -> closedstage: commit review -> resolved
2013-07-11 19:39:33	serhiy.storchaka	set	status: open -> pendingresolution: fixedstage: patch review -> commit review
2013-07-11 19:31:13	python-dev	set	nosy: + python-devmessages: +
2013-05-28 13:45:20	serhiy.storchaka	set	messages: +
2013-05-20 20:33:30	serhiy.storchaka	set	files: + marshal_bad_reader.patchmessages: + assignee: serhiy.storchakakeywords: + patchstage: needs patch -> patch review
2013-05-04 09:06:41	serhiy.storchaka	set	type: behavior -> crash
2013-04-29 21:37:55	barry	set	nosy: + barry
2013-04-29 21:37:15	dmi.baranov	set	nosy: + dmi.baranov
2013-04-29 21:29:12	serhiy.storchaka	create