|
From: | Stefan Monnier |
Subject: | bug#21436: 25.0.50; dir local variables are ignored |
Date: | Wed, 09 Sep 2015 13:43:44 -0400 |
User-agent: | Gnus/5.13 (Gnus v5.13) Emacs/25.0.50 (gnu/linux) |
>> why isn't python-shell-extra-pythonpaths safe? Just think of ways you (as an attacker) could set this variable in a file, then pass this file to a user (maybe a user on the same machine) and see this user run the code you choose. Stefan
[Prev in Thread] | Current Thread | [Next in Thread] |