mirrors/youtube-dl
1
0
Fork 0
mirror of https://github.com/ytdl-org/youtube-dl.git synced 2024-09-29 12:21:36 +00:00
Code Issues Projects Releases Wiki Activity
b2c6528baf
youtube-dl/test
History
Filippo Valsorda 4d318be195 [update] fix (unexploitable) BB'06 vulnerability in rsa_verify 
The rsa_verify code was vulnerable to a BB'06 attack, allowing to forge
signatures for arbitrary messages if and only if the public key exponent is
3.  Since the updates key is hardcoded to 65537, there is no risk for
youtube-dl, but I don't want vulnerable code in the wild.

The new function adopts a way safer approach of encoding-and-comparing to
replace the dangerous parsing code.
2016-01-21 20:12:17 +00:00
..
swftests [swfinterp] Add more builtins and improve static variables 2014-11-17 07:54:06 +01:00
__init__.py
helper.py
parameters.json
test_aes.py
test_age_restriction.py
test_all_urls.py [test/test_all_urls] Update pbs extractor name 2015-12-08 21:12:13 +01:00
test_cache.py
test_compat.py
test_download.py
test_execution.py
test_http.py
test_InfoExtractor.py
test_jsinterp.py
test_netrc.py
test_postprocessors.py
test_subtitles.py [test_subtitles] remove BlipTV test 2015-12-21 16:52:47 +01:00
test_swfinterp.py
test_unicode_literals.py
test_update.py [update] fix (unexploitable) BB'06 vulnerability in rsa_verify 2016-01-21 20:12:17 +00:00
test_utils.py [test_utils] Add tests for encode_compat_str 2015-12-20 07:07:14 +06:00
test_write_annotations.py Fix typos 2016-01-10 17:24:28 +01:00
test_youtube_lists.py
test_youtube_signature.py
test_YoutubeDL.py [YoutubeDL] urlopen: disable the 'file:' protocol (#8227) 2016-01-14 00:24:04 +01:00
testcert.pem
versions.json [update] fix (unexploitable) BB'06 vulnerability in rsa_verify 2016-01-21 20:12:17 +00:00