Subj : [$] Insecurity and Python pickles
To   : All
From : LWN.net
Date : Tue Mar 12 2024 15:45:05

[$] Insecurity and Python pickles

Date:
Tue, 12 Mar 2024 15:35:34 +0000

Description:
Serialization is the process of transforming Python objects into a sequence of
bytes which can be used to recreate a copy of the object later  or on another
machine. pickle is Python's native serialization module. It can store complex 
Python
objects,
making it an appealing prospect for moving data without having to write
custom serialization code. For example, pickle is an integral component of 
several file
formats used for machine learning. However, using pickle to deserialize
untrusted files is a major security risk, because doing so can invoke 
arbitrary
Python functions. Consequently, the machine-learning community is working to 
address the
security issues caused by widespread use of pickle .

======================================================================
Link to news story:
https://lwn.net/Articles/964392/


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)

.