cpython.git - https://github.com/python/cpython.git

diff options

author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>	2022-02-25 17:49:43 (GMT)
committer	GitHub <noreply@github.com>	2022-02-25 17:49:43 (GMT)
commit	31fef7edf951fb759004c58ae64df18bc32ea376 (patch)
tree	3e85320cbbee6a8cf274f9a18ef98862ab27195f /Python/pythonrun.c
parent	15d7594d9974cfef10e65cbb01161168c42abe9d (diff)
download	cpython-31fef7edf951fb759004c58ae64df18bc32ea376.zip cpython-31fef7edf951fb759004c58ae64df18bc32ea376.tar.gz cpython-31fef7edf951fb759004c58ae64df18bc32ea376.tar.bz2

bpo-46756: Fix authorization check in urllib.request (GH-31353) (GH-31573)

Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI "example.org/foobar" was allowed if the user was authorized for URI "example.org/foo". (cherry picked from commit e2e72567a1c94c548868f6ee5329363e6036057a) Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>

Diffstat (limited to 'Python/pythonrun.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: