GHSA-83PF-V6QQ-PWMR Fickling has a detection bypass via stdlib network-protocol constructors

Our assessment imtplib, imaplib, ftplib, poplib, telnetlib, and nntplib were added to the list of unsafe imports https://github.com/trailofbits/fickling/commit/6d20564d23acf14b42ec883908aed159be7b9ade. The UnusedVariables heuristic works as expected. Original report Summary Fickling's checksafety...

PT-2013-3377 · Python +4 · Python +4

Name of the Vulnerable Software and Affected Versions: Python versions prior to 2.6.9 Python versions prior to 2.7.4 Python versions prior to 2.7.6 Python versions prior to 3.3.3 Description: The issue is related to various Python modules, including httplib, ftplib, imaplib, nntplib, poplib, and...