logilab-common #207561 CVE-2014-1838: temp file issue in pdf_ext.py [validation pending]

def extract_keys_from_pdf(filename): # what about using 'pdftk filename dump_data_fields' and parsing the output ? os.system('pdftk %s generate_fdf output /tmp/toto.fdf' % filename) lines = file('/tmp/toto.fdf').readlines() return extract_keys(lines) def fill_pdf(infile, outfile, fields): write_fields(file('/tmp/toto.fdf', 'w'), fields) os.system('pdftk %s fill_form /tmp/toto.fdf output %s flatten' % (infile, outfile))
priority	important
type	bug
done in	0.61.0
load	0.500
load left	0.000
closed by	#9c28b5b35b38 Remove pdf_ext module (closes #207561)
patch	Remove pdf_ext module (closes #207561) [applied]

from state (3)	to state	date	User
done	validation pending	2014/02/11 15:15 UTC	narval
in-progress	done	2014/02/11 14:32 UTC
open	in-progress	2014/02/03 09:55 UTC

Ticket #207561 - latest update on 2014/02/11, created on 2014/02/03 by Julien Cristau