You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
yt-dlp/youtube_dl
Filippo Valsorda 4d318be195 [update] fix (unexploitable) BB'06 vulnerability in rsa_verify
The rsa_verify code was vulnerable to a BB'06 attack, allowing to forge
signatures for arbitrary messages if and only if the public key exponent is
3.  Since the updates key is hardcoded to 65537, there is no risk for
youtube-dl, but I don't want vulnerable code in the wild.

The new function adopts a way safer approach of encoding-and-comparing to
replace the dangerous parsing code.
9 years ago
..
downloader [downloader/hls] Ask ffmpeg to quit when interrupting youtube-dl with 'Ctrl+C' (#8252) 9 years ago
extractor [iqiyi] Update key (closes #8292) 9 years ago
postprocessor [FFmpegPostProcessor] Default of prefer ffmpeg 9 years ago
YoutubeDL.py [YoutubeDL] Ensure protocol is always present 9 years ago
__init__.py
__main__.py Use `insert` for all sys.path manipulations 9 years ago
aes.py
cache.py
compat.py [compat] Clarify the versions requiring compat_kwargs 9 years ago
jsinterp.py [jsinterp] Extend function regex (Closes #7900, closes #7901) 9 years ago
options.py [options] Prefer --convert-subs spelling 9 years ago
swfinterp.py Fix typos 9 years ago
update.py [update] fix (unexploitable) BB'06 vulnerability in rsa_verify 9 years ago
utils.py Revert "fix typos" 9 years ago
version.py release 2016.01.15 9 years ago