Menu

#20 Fix format string injections in tp_print methods

Unstable_(example)
open
nobody
None
5
2013-12-03
2013-12-03
Miloslav Trmac
No

The attached minimal patch makes sure % chars in repr() of StreamWriter or EntityMap aren't interpreted.

Using fputs() instead would be a cleaner alternative.

1 Attachments
python-4Suite-XML-1.0.2-format-string.patch

Discussion

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.