cpython.git - https://github.com/python/cpython.git

diff options

author	Victor Stinner <vstinner@python.org>	2022-09-28 23:17:27 (GMT)
committer	GitHub <noreply@github.com>	2022-09-28 23:17:27 (GMT)
commit	83a0f44ffd8b398673ae56c310cf5768d359c341 (patch)
tree	957adec00fc1c4da195392455dc9536d146996f2 /Python/pythonrun.c
parent	a5f092f3c469b674b8d9ccbd4e4377230c9ac7cf (diff)
download	cpython-83a0f44ffd8b398673ae56c310cf5768d359c341.zip cpython-83a0f44ffd8b398673ae56c310cf5768d359c341.tar.gz cpython-83a0f44ffd8b398673ae56c310cf5768d359c341.tar.bz2

gh-97612: Fix shell injection in get-remote-certificate.py (#97613)

Fix a shell code injection vulnerability in the get-remote-certificate.py example script. The script no longer uses a shell to run "openssl" commands. Issue reported and initial fix by Caleb Shortt. Remove the Windows code path to send "quit" on stdin to the "openssl s_client" command: use DEVNULL on all platforms instead. Co-authored-by: Caleb Shortt <caleb@rgauge.com>

Diffstat (limited to 'Python/pythonrun.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: