]> granicus.if.org Git - python/commit
projects / python / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e680546) | patch
Since this module is used as a fallback in case no built-in modules
authorGuido van Rossum <guido@python.org>
Wed, 10 Dec 1997 22:35:02 +0000 (22:35 +0000)
committerGuido van Rossum <guido@python.org>
Wed, 10 Dec 1997 22:35:02 +0000 (22:35 +0000)
commit90d62ab0a175b8f3451ee74f29d5de83650e2292
tree9791fc43c2a1f401cf44ca56cf8aaff435d91b87tree | snapshot
parente680546894ae6e5dffe8b6f6a6a17a56301033aecommit | diff
Since this module is used as a fallback in case no built-in modules
have been configured, string.atof() should not fail when "import re"
fails (usually because pcre is not there).

This opens up a tiny security hole: *if* an attacker can make "import
re" fail, they can also make string.atof(arbitrary_string) evaluate
the arbitrary string.  Nothing to keep me awake at night...
Lib/string.py diff | blob | history
Lib/stringold.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.