This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author serhiy.storchaka
Recipients benjamin.peterson, brett.cannon, hadimene, josh.r, ncoghlan, serhiy.storchaka, terry.reedy, yselivanov
Date 2018-02-10.08:23:18
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1518250998.71.0.467229070634.issue32757@psf.upfronthosting.co.za>
In-reply-to
Content 
I was going to write that this issue was fixed in Python 3 and it was decided to not backport the fix to Python 2. This is mostly true. But unfortunately there is a similar way of crashing Python 3
(issue32758).

This isn't a vulnerability. To exploit this bug the attacker need ability to execute an arbitrary code. An in that case crashing Python is not the worst result.

This bug can cause a problem with generated code (as in your joke example). In any case I have doubts that the fix for Python 3 will be backported to Python 2. I don't see a simple solution, the code of Python 2 and Python 3 is different enough, and there is less than 2 years of official support of Python 2.7 left. I suggest to close this issue with the resolution "wont fix".
History
Date User Action Args
2018-02-10 08:23:18serhiy.storchakasetrecipients: + serhiy.storchaka, brett.cannon, terry.reedy, ncoghlan, benjamin.peterson, yselivanov, josh.r, hadimene
2018-02-10 08:23:18serhiy.storchakasetmessageid: <1518250998.71.0.467229070634.issue32757@psf.upfronthosting.co.za>
2018-02-10 08:23:18serhiy.storchakalinkissue32757 messages
2018-02-10 08:23:18serhiy.storchakacreate