granicus.if.org Git - python/commit

author	R. David Murray <rdmurray@bitdance.com>
	Sun, 9 Jan 2011 03:02:04 +0000 (03:02 +0000)
committer	R. David Murray <rdmurray@bitdance.com>
	Sun, 9 Jan 2011 03:02:04 +0000 (03:02 +0000)
commit	d97f5ce3774c9b70a64febb713586501455964b7
tree	905d7d5248ae2d3b0b7c54e5dd5bccfb6609e942	tree \| snapshot
parent	c4c52dd23d4d365952fb7f653f72f38154e4d331	commit \| diff

Merged revisions 87873 via svnmerge from
svn+ssh://pythondev@svn.python.org/python/branches/py3k

........
  r87873 | r.david.murray | 2011-01-08 21:35:24 -0500 (Sat, 08 Jan 2011) | 12 lines

  #5871: protect against header injection attacks.

  This makes Header.encode throw a HeaderParseError if it winds up
  formatting a header such that a continuation line has no leading
  whitespace and looks like a header.  Since Header accepts values
  containing newlines and preserves them (and this is by design), without
  this fix any program that took user input (say, a subject in a web form)
  and passed it to the email package as a header was vulnerable to header
  injection attacks.  (As far as we know this has never been exploited.)

  Thanks to Jakub Wilk for reporting this vulnerability.
........

Lib/email/header.py		diff \| blob \| history
Lib/email/test/test_email.py		diff \| blob \| history
Misc/NEWS		diff \| blob \| history