-
-
Notifications
You must be signed in to change notification settings - Fork 32.4k
Open
Labels
3.10only security fixesonly security fixes3.11only security fixesonly security fixes3.12only security fixesonly security fixes3.13bugs and security fixesbugs and security fixes3.14bugs and security fixesbugs and security fixes3.8 (EOL)end of lifeend of life3.9only security fixesonly security fixesstdlibPython modules in the Lib dirPython modules in the Lib dirtopic-IOtype-securityA security issueA security issue
Description
http.client.HTTPResponse.read()
(without argument) consumes the amount of memory specified by the value of the Content-Lenght
header in the response before starting receiving the data from the socket. Normally, if the server does not send enough data, the client gets IncompleteRead
error, but if Content-Lenght
is too large, it can consume a large amount of memory and CPU time and cause swapping. Therefore, a maleficent server can cause a DOS attack on client by sending a small response.
Linked PRs
xyb
Metadata
Metadata
Assignees
Labels
3.10only security fixesonly security fixes3.11only security fixesonly security fixes3.12only security fixesonly security fixes3.13bugs and security fixesbugs and security fixes3.14bugs and security fixesbugs and security fixes3.8 (EOL)end of lifeend of life3.9only security fixesonly security fixesstdlibPython modules in the Lib dirPython modules in the Lib dirtopic-IOtype-securityA security issueA security issue