Message 401643 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	eric.smith
Recipients	eric.smith, xiongpanju
Date	2021-09-11.17:05:24
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1631379924.16.0.518041444745.issue45170@roundup.psfhosted.org>
In-reply-to

Content
This is documented in the tarfile docs: Warning Never extract archives from untrusted sources without prior inspection. It is possible that files are created outside of path, e.g. members that have absolute filenames starting with "/" or filenames with two dots "..".

This is documented in the tarfile docs:

Warning

Never extract archives from untrusted sources without prior inspection. It is possible that files are created outside of path, e.g. members that have absolute filenames starting with "/" or filenames with two dots "..".

History
Date	User	Action	Args
2021-09-11 17:05:24	eric.smith	set	recipients: + eric.smith, xiongpanju
2021-09-11 17:05:24	eric.smith	set	messageid: <1631379924.16.0.518041444745.issue45170@roundup.psfhosted.org>
2021-09-11 17:05:24	eric.smith	link	issue45170 messages
2021-09-11 17:05:24	eric.smith	create