Ubuntu
python3.2 package

Regresssion: CVE-2013-1752-smtplib.patch breaks SMTP over TLS

Bug #1520698 reported by Marc-Etienne M.Léveillé
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
python3.2 (Ubuntu)
New
Undecided
Unassigned

Bug Description

There is a bug in the latest version (12.04, python3.2 3.2.3-0ubuntu3.7) that prevents smtplib to work on with SSL connection.

Expected:
E-mail message sent.

Result:
The error is the following:
  File "/home/user/send_mail.py", line XX, in send_mail
    smtp.login(username, password)
  File "/usr/lib/python3.2/smtplib.py", line 594, in login
    self.ehlo_or_helo_if_needed()
  File "/usr/lib/python3.2/smtplib.py", line 553, in ehlo_or_helo_if_needed
    if not (200 <= self.ehlo()[0] <= 299):
  File "/usr/lib/python3.2/smtplib.py", line 420, in ehlo
    (code, msg) = self.getreply()
  File "/usr/lib/python3.2/smtplib.py", line 367, in getreply
    line = self.file.readline(_MAXLINE + 1)
TypeError: readline() takes exactly 1 positional argument (2 given)

Cause:
CVE-2013-1752-smtplib.patch does not modify SSLFakeFile.readline(..) to accept additional parameters.

The updated patch is here: https://hg.python.org/cpython/rev/8a6def3add5b

-------->8---------

$ lsb_release -rd
Description: Ubuntu 12.04.5 LTS
Release: 12.04

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.