CVE-2013-1752: ftplib unlimited read

ftplib: unlimited read from connection.

  • Disclosure date: 2012-09-25 (Python issue #16038 reported)
  • Red Hat impact: Moderate

Fixed In

Python issue

ftplib: unlimited readline() from connection.

  • Python issue: issue #16038
  • Creation date: 2012-09-25
  • Reporter: Christian Heimes

Timeline

Timeline using the disclosure date 2012-09-25 as reference:

  • 2012-09-25: Python issue #16038 reported by Christian Heimes
  • 2013-10-20 (+390 days): commit 2585e1e
  • 2013-10-20 (+390 days): commit c30b178
  • 2013-11-10 (+411 days): Python 2.7.6 released
  • 2013-11-17 (+418 days): Python 3.3.3 released
  • 2014-03-16: Python 3.4.0 released
  • 2014-09-30 (+735 days): commit c9cb18d
  • 2014-10-11 (+746 days): Python 3.2.6 released