fix for security issue with python-21.el/python.el

gnu-emacs-sources

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

fix for security issue with python-21.el/python.el

From:	Dave Love
Subject:	fix for security issue with python-21.el/python.el
Date:	Wed, 10 Sep 2008 22:47:30 +0100
User-agent:	Gnus/5.110011 (No Gnus v0.11)

I got a second-hand report of a security problem with the way the
inferior interpreter works in my Python mode.  There are patches to work
around it below for python-21.el (for Emacs 21) and python.el (for Emacs
22) as well as one which will apply against the forked mode from Emacs
22, although I wouldn't recommend using that version.

There's an explanation in the commentary added by the patch.  I assume,
but don't know, that this is also appropriate for other systems like MS
Windows.  I've only checked on GNU/Linux, and the Python documentation
says the module-loading behaviour is system-dependent.

The current versions of the mode are under
<URL:http://www.loveshack.ukfsn.org/emacs/>.

python-21.el.diff
Description: python-21.el patch

python.el.diff
Description: python.el (author-maintained) patch

python-emacs.el.diff
Description: python.el (from Emacs 22) patch

[Prev in Thread]

Current Thread

[Next in Thread]

fix for security issue with python-21.el/python.el, Dave Love <=
- Re: fix for security issue with python-21.el/python.el, Dave Love, 2008/09/15

Prev by Date: Re: spartan-wiki.el --- a really spartan personal wiki
Next by Date: Re: fix for security issue with python-21.el/python.el
Previous by thread: Re: ergonomic_keybinding_*.el -- ergonomic keybinding
Next by thread: Re: fix for security issue with python-21.el/python.el
Index(es):
- Date
- Thread