Hi Sandro!
* Sandro Tosi <[email protected]>, 2014-09-19, 22:53:
pylint is currently advertised (both in the package description and in
the FAQ) as a static analyser, even though it's _not_ static. This
puts users who run pylint over untrusted code (e.g. me, before I
discovered this bug) at risk of compromising their systems.
I tried to replicate the problem with this module but it's not
happening anymore (even re-adding the "from doc import *" line) - do
you have another module that triggered that error?
I didn't have anything at hand, so I wrote my own reproducer:
$ gcc -Wall -shared -fPIC moo.c -o _moo.so
$ pylint moo.py
No config file found, using default configuration
moo!
Segmentation fault
--
Jakub Wilk
#include <stdio.h>
#include <signal.h>
void __attribute__((constructor)) moo() {
printf("moo!\n");
kill(0, SIGSEGV);
}
from _moo import *
