Message 292553 - Python tracker

Message292553

Author	martin.panter
Recipients	christian.heimes, corona10, ecbftw, martin.panter, supl, vstinner
Date	2017-04-29.02:08:42
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1493431723.7.0.33588321682.issue29606@psf.upfronthosting.co.za>
In-reply-to

Content
I understand this bug (as reported by ECBFTW) is about Python injecting unexpected FTP commands when the “urllib” and “urllib2” modules are used. The “httplib” module (“http.client” in Python 3) is unaffected. I only mentioned HTTP as an example of a similar fix made recently; sorry if that was confusing. To be clear, in Python 2 I think both the “urllib” _and_ “urllib2” modules are affected, as well as “ftplib” directly. In Python 3, “urllib.request” and “ftplib” are affected. But I don’t think “urlparse” and “urllib.parse” should be changed.

Content

I understand this bug (as reported by ECBFTW) is about Python injecting unexpected FTP commands when the “urllib” and “urllib2” modules are used. The “httplib” module (“http.client” in Python 3) is unaffected. I only mentioned HTTP as an example of a similar fix made recently; sorry if that was confusing.

To be clear, in Python 2 I think both the “urllib” _and_ “urllib2” modules are affected, as well as “ftplib” directly. In Python 3, “urllib.request” and “ftplib” are affected. But I don’t think “urlparse” and “urllib.parse” should be changed.

History
Date	User	Action	Args
2017-04-29 02:08:43	martin.panter	set	recipients: + martin.panter, vstinner, christian.heimes, ecbftw, supl, corona10
2017-04-29 02:08:43	martin.panter	set	messageid: <1493431723.7.0.33588321682.issue29606@psf.upfronthosting.co.za>
2017-04-29 02:08:43	martin.panter	link	issue29606 messages
2017-04-29 02:08:42	martin.panter	create