Re: Untrusted search path vulnerabilities

To: debian-python@lists.debian.org
Subject: Re: Untrusted search path vulnerabilities
From: Sandro Tosi <morph@debian.org>
Date: Wed, 17 Nov 2010 23:37:13 +0100
Message-id: <[🔎] AANLkTikCmpbMf=L=C_2oLTqVtBySN9x+6obA9Zc=hZ3O@mail.gmail.com>
In-reply-to: <[🔎] 20101117215848.GA9858@jwilk.net>
References: <[🔎] 20101117215848.GA9858@jwilk.net>

Hi Jakub & all others,
nice to see you back at full force :)

On Wed, Nov 17, 2010 at 22:58, Jakub Wilk <jwilk@debian.org> wrote:
> Any volunteers to file bugs? :)

I'll do that tomorrow, if no-one beats me.

Severity? grave for the vulnerable packages, important for the others?
in this case, was release team already contacted about that? I don't
think this mini-RC-MBF would make them happy

Also, just to give some advice to the maints: the correct approach
here is to check if PYTHONPATH is set before (blindly) append it to
PYTHONPATH - or is there something else to do?

Cheers,
-- 
Sandro Tosi (aka morph, morpheus, matrixhasu)
My website: http://matrixhasu.altervista.org/
Me at Debian: http://wiki.debian.org/SandroTosi

Reply to:

Follow-Ups:
- Re: Untrusted search path vulnerabilities
  - From: Jakub Wilk <jwilk@debian.org>
- Re: Untrusted search path vulnerabilities
  - From: Jakub Wilk <jwilk@debian.org>

References:
- Untrusted search path vulnerabilities
  - From: Jakub Wilk <jwilk@debian.org>

Prev by Date: Re: Untrusted search path vulnerabilities
Next by Date: Re: Untrusted search path vulnerabilities
Previous by thread: Re: Untrusted search path vulnerabilities
Next by thread: Re: Untrusted search path vulnerabilities
Index(es):
- Date
- Thread