腾讯网

PyInstaller工具漏洞预警,可致攻击者执行任意Python代码

PyInstaller项目近日发布补丁,修复了一个影响6.0.0之前版本打包应用程序的本地权限提升漏洞(CVE-2025-59042,CVSS评分7.0)。该漏洞可能导致攻击者在PyInstaller冻结应用的引导过程中执行任意代码。 技术原理 PyInstaller通过打包解释器和依赖项将Python应用程序转换为 ...
InfoWorld

24 Python libraries for every Python developer

Web apps, web crawling, database access, GUI creation, parsing, image processing, and lots more—these handy tools have you covered Want a good reason for the smashing success of the Python programming ...