File tree Expand file tree Collapse file tree 1 file changed +7
-7
lines changed
Misc/NEWS.d/next/Security Expand file tree Collapse file tree 1 file changed +7
-7
lines changed Original file line number Diff line number Diff line change 1- Fix a potential denial of service vulnerability in the :mod: `imaplib ` module.
2- When connecting to a malicious server, it could cause an arbitrary amount of
3- memory to be allocated. On many systems this is harmless as unused virtual
4- memory is only a mapping, but if this hit a virtual address size limit it could
5- lead to a :exc: `MemoryError ` or other process crash. On unusual systems or
6- builds where all allocated memory is touched and backed by actual ram or
7- storage it could've consumed resources doing so until similarly crashing.
1+ Fix a potential denial of service in the :mod: `imaplib ` module. When connecting
2+ to a malicious server, it could cause an arbitrary amount of memory to be
3+ allocated. On many systems this is harmless as unused virtual memory is only a
4+ mapping, but if this hit a virtual address size limit it could lead to a
5+ :exc: `MemoryError ` or other process crash. On unusual systems or builds where
6+ all allocated memory is touched and backed by actual ram or storage it could've
7+ consumed resources doing so until similarly crashing.
You can’t perform that action at this time.
0 commit comments