diff options
| -rw-r--r-- | Misc/NEWS | 2 | ||||
| -rw-r--r-- | Modules/timemodule.c | 6 |
2 files changed, 8 insertions, 0 deletions
@@ -84,6 +84,8 @@ Library - Issue #16180: Exit pdb if file has syntax error, instead of trapping user in an infinite loop. Patch by Xavier de Gaye. +- Issue #24917: time_strftime() Buffer Over-read. Patch by John Leitch. + - Issue #21112: Fix regression in unittest.expectedFailure on subclasses. Patch from Berker Peksag. diff --git a/Modules/timemodule.c b/Modules/timemodule.c index d0917a4..f729594 100644 --- a/Modules/timemodule.c +++ b/Modules/timemodule.c @@ -662,6 +662,12 @@ time_strftime(PyObject *self, PyObject *args) "format %y requires year >= 1900 on AIX"); return NULL; } + else if (outbuf[1] == '\0') + { + PyErr_SetString(PyExc_ValueError, "Incomplete format string"); + Py_DECREF(format); + return NULL; + } } #endif |