[issue24594] msilib.OpenDatabase Type Confusion

Changes by Steve Dower : -- resolution: -> fixed stage: -> resolved status: open -> closed ___ Python tracker ___

[issue24594] msilib.OpenDatabase Type Confusion

Roundup Robot added the comment: New changeset e524d5dc8767 by Steve Dower in branch '2.7': Issue #24594: Validates persist parameter when opening MSI database https://hg.python.org/cpython/rev/e524d5dc8767 New changeset fa89e107f43d by Steve Dower in branch '3.5': Issue #24594: Validates

[issue24594] msilib.OpenDatabase Type Confusion

Steve Dower added the comment: I'm applying the patch, with one small change to pass through persist rather than assuming the variable exists. It'll be 2.7, 3.5 and default. -- versions: +Python 3.5 -Python 3.7 ___ Python tracker

[issue24594] msilib.OpenDatabase Type Confusion

Christian Heimes added the comment: Steve, please have a look. -- assignee: -> steve.dower nosy: +christian.heimes versions: +Python 2.7, Python 3.6, Python 3.7 ___ Python tracker

[issue24594] msilib.OpenDatabase Type Confusion

Changes by Mark Lawrence breamore...@yahoo.co.uk: -- components: +Windows nosy: +paul.moore, steve.dower, tim.golden, zach.ware ___ Python tracker rep...@bugs.python.org http://bugs.python.org/issue24594 ___

[issue24594] msilib.OpenDatabase Type Confusion

New submission from JohnLeitch: The msilib.OpenDatabase method suffers from a type confusion vulnerability caused by the behavior of MsiOpenDatabase(), the underlying win32 function utilized. This is due to the unorthodox handling of the szPersist parameter: when an MSIDBOPEN_* value is

[issue24594] msilib.OpenDatabase Type Confusion

JohnLeitch added the comment: Attaching repro file. -- Added file: http://bugs.python.org/file39886/msilib.OpenDatabase_Type_Confusion.py ___ Python tracker rep...@bugs.python.org http://bugs.python.org/issue24594