Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in SimpleXMLRPCServer

upon malformed POST request.
author: Charles-François Natali <neologix@free.fr> 2012-02-18 13:15:38 (GMT)
committer: Charles-François Natali <neologix@free.fr> 2012-02-18 13:15:38 (GMT)
commit: 66f3cc6f8de83c447d937160e4a1630c4482b5f5 (patch)
tree: dbe098ca2acbcbdcdd4fd7dc2c7394dbf46c6037 /Misc
parent: d358e0554bc520768041652676ec8e6076f221a9 (diff)
download: cpython-66f3cc6f8de83c447d937160e4a1630c4482b5f5.zip
cpython-66f3cc6f8de83c447d937160e4a1630c4482b5f5.tar.gz
cpython-66f3cc6f8de83c447d937160e4a1630c4482b5f5.tar.bz2
1 files changed, 3 insertions, 0 deletions
diff --git a/Misc/NEWS b/Misc/NEWS
index 92e8197..20d39b6 100644
--- a/Misc/NEWS
+++ b/Misc/NEWS
@@ -13,6 +13,9 @@ Core and Builtins
 Library
 -------
 
+- Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in
+  SimpleXMLRPCServer upon malformed POST request.
+
 - Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC
   IV attack countermeasure.
author	Charles-François Natali <neologix@free.fr>	2012-02-18 13:15:38 (GMT)
committer	Charles-François Natali <neologix@free.fr>	2012-02-18 13:15:38 (GMT)
commit	66f3cc6f8de83c447d937160e4a1630c4482b5f5 (patch)
tree	dbe098ca2acbcbdcdd4fd7dc2c7394dbf46c6037 /Misc
parent	d358e0554bc520768041652676ec8e6076f221a9 (diff)
download	cpython-66f3cc6f8de83c447d937160e4a1630c4482b5f5.zip cpython-66f3cc6f8de83c447d937160e4a1630c4482b5f5.tar.gz cpython-66f3cc6f8de83c447d937160e4a1630c4482b5f5.tar.bz2