Issue #18789: Update XML vulnerability table to use Safe/Vulnerable instead of No/Yes.

author: Guido van Rossum <guido@python.org> 2016-10-13 21:31:50 (GMT)
committer: Guido van Rossum <guido@python.org> 2016-10-13 21:31:50 (GMT)
commit: e1478e4ae2001ca352c3319bdc9c23a555f98788 (patch)
tree: c41582c8d0958549c66e735fe5570881cddac030 /Doc/library/xml.rst
parent: 4a4523523ea73010b856336b27ddf952132a202f (diff)
download: cpython-e1478e4ae2001ca352c3319bdc9c23a555f98788.zip
cpython-e1478e4ae2001ca352c3319bdc9c23a555f98788.tar.gz
cpython-e1478e4ae2001ca352c3319bdc9c23a555f98788.tar.bz2
1 files changed, 9 insertions, 9 deletions
diff --git a/Doc/library/xml.rst b/Doc/library/xml.rst
index 3c2fc89..d833b7f 100644
--- a/Doc/library/xml.rst
+++ b/Doc/library/xml.rst
@@ -60,15 +60,15 @@ circumvent firewalls.
 The following table gives an overview of the known attacks and whether
 the various modules are vulnerable to them.
 
-=========================  ========  =========  =========  ========  =========
-kind                       sax       etree      minidom    pulldom   xmlrpc
-=========================  ========  =========  =========  ========  =========
-billion laughs             **Yes**   **Yes**    **Yes**    **Yes**   **Yes**
-quadratic blowup           **Yes**   **Yes**    **Yes**    **Yes**   **Yes**
-external entity expansion  **Yes**   No    (1)  No    (2)  **Yes**   No    (3)
-`DTD`_ retrieval           **Yes**   No         No         **Yes**   No
-decompression bomb         No        No         No         No        **Yes**
-=========================  ========  =========  =========  ========  =========
+=========================  ==============   ===============   ==============   ==============   ==============
+kind                       sax              etree             minidom          pulldom          xmlrpc
+=========================  ==============   ===============   ==============   ==============   ==============
+billion laughs             **Vulnerable**   **Vulnerable**    **Vulnerable**   **Vulnerable**   **Vulnerable**
+quadratic blowup           **Vulnerable**   **Vulnerable**    **Vulnerable**   **Vulnerable**   **Vulnerable**
+external entity expansion  **Vulnerable**   Safe    (1)       Safe    (2)      **Vulnerable**   Safe    (3)
+`DTD`_ retrieval           **Vulnerable**   Safe              Safe             **Vulnerable**   Safe
+decompression bomb         Safe             Safe              Safe             Safe             **Vulnerable**
+=========================  ==============   ===============   ==============   ==============   ==============
 
 1. :mod:`xml.etree.ElementTree` doesn't expand external entities and raises a
    :exc:`ParserError` when an entity occurs.
author	Guido van Rossum <guido@python.org>	2016-10-13 21:31:50 (GMT)
committer	Guido van Rossum <guido@python.org>	2016-10-13 21:31:50 (GMT)
commit	e1478e4ae2001ca352c3319bdc9c23a555f98788 (patch)
tree	c41582c8d0958549c66e735fe5570881cddac030 /Doc/library/xml.rst
parent	4a4523523ea73010b856336b27ddf952132a202f (diff)
download	cpython-e1478e4ae2001ca352c3319bdc9c23a555f98788.zip cpython-e1478e4ae2001ca352c3319bdc9c23a555f98788.tar.gz cpython-e1478e4ae2001ca352c3319bdc9c23a555f98788.tar.bz2