projects / python3.9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 31f3808) | patch
[3.9] gh-109858: Protect zipfile from "quoted-overlap" zipbomb (GH-110016) (GH-113915)
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Wed, 17 Jan 2024 13:48:06 +0000 (14:48 +0100)
committerArnaud Rebillout <arnaudr@debian.org>
Tue, 14 Apr 2026 04:38:32 +0000 (11:38 +0700)
commitd26e418f372bcc025d21b5faac99e6e085a479d2
tree5e5f217cf7927ad4bd021d7041bea7d4c6ca5073tree | snapshot
parent31f38084346bff5e5f2c1ce490b040633cc09af5commit | diff
[3.9] gh-109858: Protect zipfile from "quoted-overlap" zipbomb (GH-110016) (GH-113915)

Raise BadZipFile when try to read an entry that overlaps with other entry or
central directory.
(cherry picked from commit 66363b9a7b9fe7c99eba3a185b74c5fdbf842eba)

Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
Gbp-Pq: Name 0020-3.9-gh-109858-Protect-zipfile-from-quoted-overlap-zi.patch
Lib/test/test_zipfile.py diff | blob | history
Lib/zipfile.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.