<div dir="ltr"><div class="gmail_default" style="font-family:georgia,serif">Greetings.<br><br></div><div class="gmail_default" style="font-family:georgia,serif">CVE-2013-7338 has been assigned to python issue 20078.<br>"<span>zipfile - ZipExtFile.read goes into 100% CPU infinite loop on maliciously binary edited zips</span> ". [0]<br>

<br>This issue is not resolved in Python 3.4.0[1].<br><br></div><div class="gmail_default" style="font-family:georgia,serif">An upstream fix is available. [2]<br><br></div><div class="gmail_default" style="font-family:georgia,serif">

FS39540 has been filed with "Resolution=patch". [3]<br></div><div class="gmail_default" style="font-family:georgia,serif"><br>[0] <a href="http://bugs.python.org/issue20078">http://bugs.python.org/issue20078</a><br>

[1] <a href="http://docs.python.org/3.4/whatsnew/3.4.html">http://docs.python.org/3.4/whatsnew/3.4.html</a><br>[2] <a href="http://hg.python.org/cpython/rev/79ea4ce431b1">http://hg.python.org/cpython/rev/79ea4ce431b1</a><br>

[3] <a href="https://bugs.archlinux.org/task/39540">https://bugs.archlinux.org/task/39540</a><br><br></div><div dir="ltr">BW<br><span style="font-family:georgia,serif"></span></div>
</div>