security-sig  

Messages by Thread

• [Security-announce][CVE-2023-6597] tempfile.TemporaryDirectory dereferences symlinks during cleanup Ee Durbin
  • [Security-sig] Re: [Security-announce][CVE-2023-6597] tempfile.TemporaryDirectory dereferences symlinks during cleanup Michał Górny
• [Security-announce][CVE-2024-0450] Quoted zip-bomb protection for zipfile Ee Durbin
  • [Security-sig] Re: [Security-announce][CVE-2024-0450] Quoted zip-bomb protection for zipfile Michał Górny
• [Security-sig] Re: [Security-announce]Incident Report: Malicious takeover of ctx project on PyPI Skip Montanaro
  • [Security-sig] Re: [Security-announce]Incident Report: Malicious takeover of ctx project on PyPI Brett Cannon
  • [Security-sig] Re: [Security-announce]Incident Report: Malicious takeover of ctx project on PyPI Sumana Harihareswara
• [Security-sig] [CVE-2015-20107] Shell injection in mailcap module Steve Dower
  • [Security-sig] Re: [CVE-2015-20107] Shell injection in mailcap module anglenajolly1
• [Security-sig] [CVE-2022-26488] Escalation of privilege via Windows installer Steve Dower
• [Security-sig] Answers to your Questions about PrestaShop Dhriti Jones
  • [Security-sig] Re: Answers to your Questions about PrestaShop Joy Jerra
  • [Security-sig] Re: Answers to your Questions about PrestaShop Cristina Muñoz via Security-SIG
  • [Security-sig] Re: Answers to your Questions about PrestaShop Ethan Furman
• [Security-sig] Get Best Tips And Tricks To Solve Life Issues Sandra Parson via Security-SIG
• [Security-sig] 374252 Python Invalid Search Path Vulnerability Prashanth Reddy
  • [Security-sig] Re: 374252 Python Invalid Search Path Vulnerability Victor Stinner
  • [Security-sig] Re: 374252 Python Invalid Search Path Vulnerability Victor Stinner
  • [Security-sig] Re: 374252 Python Invalid Search Path Vulnerability maryseaubin3690
• [Security-sig] Which CVSS Severity and Metrics version should be used? 2 or 3? Victor Stinner
• [Security-sig] PSRT's page link is broken on the description Felipe Rodrigues
  • [Security-sig] Re: PSRT's page link is broken on the description Steve Dower
  • [Security-sig] Re: PSRT's page link is broken on the description Barry Warsaw
• [Security-sig] Re: [Security-announce]CVE-2020-8315: Windows 7 DLL hijack Marlon Luis Petry
  • [Security-sig] Re: [PSRT] [Security-announce]CVE-2020-8315: Windows 7 DLL hijack Victor Stinner
• [Security-sig] PEP 458: Secure transport independent download integrity for PyPI packages Sumana Harihareswara
  • [Security-sig] Re: PEP 458: Secure transport independent download integrity for PyPI packages Sumana Harihareswara
• [Security-sig] Table of Python Vulnerabilities updated Victor Stinner
• [Security-sig] Move https://python-security.readthedocs.io/ to python.org? Victor Stinner
• [Security-sig] Script for testing Python vulnerabilities Victor Stinner
• [Security-sig] python-security.readthedocs.io updated Victor Stinner
• [Security-sig] Subscriptions to Security-announce Victor Stinner
• [Security-sig] CVE-2018-1000117: Buffer overflow vulnerability in os.symlink on Windows Steve Dower
  • [Security-sig] Re: CVE-2018-1000117: Buffer overflow vulnerability in os.symlink on Windows Steve Dower
  • [Security-sig] CVE-2018-1000117: Buffer overflow vulnerability in os.symlink on Windows Steve Dower
• [Security-sig] Backport critical bugfixes? Victor Stinner
  • [Security-sig] Re: Backport critical bugfixes? Ned Deily
  • [Security-sig] Re: Backport critical bugfixes? Nick Coghlan
• [Security-sig] Fwd: List Settings Question Steve Barnes
  • Re: [Security-sig] Fwd: List Settings Question George Fischhof
  • Re: [Security-sig] Fwd: List Settings Question Wes Turner
  • Re: [Security-sig] List Settings Question Barry Warsaw
  • Re: [Security-sig] List Settings Question Nick Coghlan
  • Re: [Security-sig] List Settings Question Victor Stinner
  • Re: [Security-sig] List Settings Question Barry Warsaw
  • Re: [Security-sig] [Mailman-cabal] Fwd: List Settings Question Mark Sapiro
• [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Nathaniel Smith
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Barry Warsaw
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime James Powell
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Brett Cannon
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Brett Cannon
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Christian Heimes
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Nick Coghlan
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime James Powell
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Christian Heimes
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Christian Heimes
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Christian Heimes
  • Re: [Security-sig] PEP 551: Security transparency in the Python runtime Steve Dower
  • [Security-sig] Re: PEP 551: Security transparency in the Python runtime Dhriti Jones
• [Security-sig] All known security vunerabilities have been fixed in all branches Victor Stinner
• [Security-sig] Vulnerability table updated for Python 3.6.2 Victor Stinner
• [Security-sig] Python Vulnerabilities: Vulnerable Python versions added Victor Stinner
• [Security-sig] New report of Python vulnerabilities Victor Stinner
• [Security-sig] Archives (.tar or .zip) with absolute paths Victor Stinner
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Wes Turner
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Victor Stinner
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Wes Turner
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Victor Stinner
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Wes Turner
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Nathaniel Smith
  • Re: [Security-sig] Archives (.tar or .zip) with absolute paths Victor Stinner
• [Security-sig] Patching ssl.py to workaround ssl lack of relocability David Cournapeau
  • Re: [Security-sig] Patching ssl.py to workaround ssl lack of relocability Christian Heimes
  • Re: [Security-sig] Patching ssl.py to workaround ssl lack of relocability David Cournapeau
  • Re: [Security-sig] Patching ssl.py to workaround ssl lack of relocability Nick Coghlan
  • Re: [Security-sig] Patching ssl.py to workaround ssl lack of relocability David Cournapeau
• [Security-sig] 3.3 and 3.4 branches not well maintained Victor Stinner
  • Re: [Security-sig] 3.3 and 3.4 branches not well maintained Ned Deily
  • Re: [Security-sig] 3.3 and 3.4 branches not well maintained Victor Stinner
  • Re: [Security-sig] 3.3 and 3.4 branches not well maintained Victor Stinner
• [Security-sig] HTML page of Python security vulnerabilities Victor Stinner
  • Re: [Security-sig] HTML page of Python security vulnerabilities Steve Dower
  • Re: [Security-sig] HTML page of Python security vulnerabilities Wes Turner
  • Re: [Security-sig] HTML page of Python security vulnerabilities Victor Stinner
  • Re: [Security-sig] HTML page of Python security vulnerabilities Victor Stinner
  • Re: [Security-sig] HTML page of Python security vulnerabilities Victor Stinner
  • Re: [Security-sig] HTML page of Python security vulnerabilities Victor Stinner
• [Security-sig] Unified TLS API for Python 4: This Time It's Personal Cory Benfield
• [Security-sig] email & phones Ethan Furman
  • Re: [Security-sig] email & phones Donald Stufft
  • Re: [Security-sig] email & phones Steve Dower
  • Re: [Security-sig] email & phones Ethan Furman
  • Re: [Security-sig] email & phones Nick Coghlan
• [Security-sig] Unified TLS API for Python: Draft 3 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Ethan Furman
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Donald Stufft
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Draft 3 Wes Turner
• [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Ethan Furman
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Wes Turner
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Ethan Furman
  • Re: [Security-sig] Unified TLS API for Python: Round 2 Cory Benfield
• [Security-sig] new TLS module Ethan Furman
  • Re: [Security-sig] new TLS module Cory Benfield
• [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Wes Turner
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Wes Turner
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Wes Turner
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Donald Stufft
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Donald Stufft
  • Re: [Security-sig] Unified TLS API for Python Ian Cordasco
  • Re: [Security-sig] Unified TLS API for Python Wes Turner
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Wes Turner
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Nathaniel Smith
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Nick Coghlan
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Wes Turner
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
  • Re: [Security-sig] Unified TLS API for Python Christian Heimes
  • Re: [Security-sig] Unified TLS API for Python Cory Benfield
• [Security-sig] Lack of IDNA 2008 support Christian Heimes
  • Re: [Security-sig] Lack of IDNA 2008 support Victor Stinner
  • Re: [Security-sig] Lack of IDNA 2008 support Christian Heimes
  • Re: [Security-sig] Lack of IDNA 2008 support Cory Benfield
• [Security-sig] Implementation of the PEP 524 Victor Stinner
  • Re: [Security-sig] Implementation of the PEP 524 Nick Coghlan

• Earlier messages