projects / python3.9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 55f7c5b) | patch
[3.9] gh-109858: Protect zipfile from "quoted-overlap" zipbomb (GH-110016) (GH-113915)
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Wed, 17 Jan 2024 13:48:06 +0000 (14:48 +0100)
committerSean Whitton <spwhitton@spwhitton.name>
Thu, 20 Mar 2025 02:07:39 +0000 (10:07 +0800)
commit2a296c077af43fd5672f4b6f1091a0904a237445
treec9bb8add47a9decfd68cd5901afb94f2fc6a162atree | snapshot
parent55f7c5b571f155cce8ea69dad55092b4ac6f9cd7commit | diff
[3.9] gh-109858: Protect zipfile from "quoted-overlap" zipbomb (GH-110016) (GH-113915)

Raise BadZipFile when try to read an entry that overlaps with other entry or
central directory.
(cherry picked from commit 66363b9a7b9fe7c99eba3a185b74c5fdbf842eba)

Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
Gbp-Pq: Name 0020-3.9-gh-109858-Protect-zipfile-from-quoted-overlap-zi.patch
Lib/test/test_zipfile.py diff | blob | history
Lib/zipfile.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.