subject:"\[issue34045\] DoS due to null pointer dereference in marshal.dumps\(\)"

[issue34045] DoS due to null pointer dereference in marshal.dumps()

2018-07-04 Thread Serhiy Storchaka

Serhiy Storchaka added the comment: I concur with Eric. -- nosy: +serhiy.storchaka resolution: -> not a bug stage: -> resolved status: open -> closed ___ Python tracker ___

[issue34045] DoS due to null pointer dereference in marshal.dumps()

2018-07-04 Thread Eric V. Smith

Eric V. Smith added the comment: I do not believe this is a problem. The marshal documentation includes this: Warning The marshal module is not intended to be secure against erroneous or maliciously constructed data. Never unmarshal data received from an untrusted or unauthenticated source.

[issue34045] DoS due to null pointer dereference in marshal.dumps()

2018-07-04 Thread Krishna Ram Prakash R

New submission from Krishna Ram Prakash R : By passing a malformed string as input to marshal.loads() an attacker can trigger a null pointer dereference resulting in DoS. This happens because when a Python object is unmarshalled by reference, it is assumed that the target object is fully

[issue34045] DoS due to null pointer dereference in marshal.dumps()

[issue34045] DoS due to null pointer dereference in marshal.dumps()

[issue34045] DoS due to null pointer dereference in marshal.dumps()

3 matches

Site Navigation

Mail list logo

Footer information