diff options
Diffstat (limited to 'Mailman/SecurityManager.py')
| -rw-r--r-- | Mailman/SecurityManager.py | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/Mailman/SecurityManager.py b/Mailman/SecurityManager.py index 9d62bef4b..1a42460ef 100644 --- a/Mailman/SecurityManager.py +++ b/Mailman/SecurityManager.py @@ -263,7 +263,10 @@ class SecurityManager: # decoding as necessary. By using SimpleCookie, we prevent any kind # of security breach due to untrusted cookie data being unpickled # (which is quite unsafe). - c = Cookie.SimpleCookie(cookiedata) + try: + c = Cookie.SimpleCookie(cookiedata) + except Cookie.CookieError: + return 0 # If the user was not supplied, but the authcontext is AuthUser, we # can try to glean the user address from the cookie key. There may be # more than one matching key (if the user has multiple accounts |