Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | add a default limit for the amount of data xmlrpclib.gzip_decode will return ↵ | Benjamin Peterson | 2014-12-06 | 3 | -3/+36 |
| | | | | (closes #16043) | ||||
* | use pythontest.net for url fragment test | Benjamin Peterson | 2014-11-05 | 1 | -2/+2 |
| | |||||
* | move idna test domain to pythontest.net | Benjamin Peterson | 2014-11-03 | 1 | -3/+4 |
| | |||||
* | Added tag v3.2.6 for changeset 0bd5f4f14de9 | Georg Brandl | 2014-10-12 | 1 | -0/+1 |
| | |||||
* | Bump to 3.2.6v3.2.6 | Georg Brandl | 2014-10-12 | 5 | -8/+8 |
| | |||||
* | #16040: fix unlimited read from connection in nntplib. | Georg Brandl | 2014-10-12 | 3 | -1/+24 |
| | |||||
* | Added tag v3.2.6rc1 for changeset 51382a5598ec | Georg Brandl | 2014-10-04 | 1 | -0/+1 |
| | |||||
* | Copyright year update, add version to licenses.v3.2.6rc1 | Georg Brandl | 2014-10-04 | 5 | -5/+11 |
| | |||||
* | Bump to 3.2.6rc1 | Georg Brandl | 2014-10-04 | 6 | -11/+11 |
| | |||||
* | ref #19855: skip uuid test_find_mac on non-Posix as in later branches | Georg Brandl | 2014-10-01 | 1 | -2/+3 |
| | |||||
* | Fix unicode_aswidechar() for 4b unicode and 2b wchar_t (AIX). | Georg Brandl | 2014-10-01 | 2 | -1/+7 |
| | |||||
* | Issue #19855: uuid.getnode() on Unix now looks on the PATH for the | Georg Brandl | 2014-09-30 | 4 | -16/+67 |
| | | | | | | | | | | | | | | executables used to find the mac address, with /sbin and /usr/sbin as fallbacks. Issue #11508: Fixed uuid.getnode() and uuid.uuid1() on environment with virtual interface. Original patch by Kent Frazier. Issue #18784: The uuid module no more attempts to load libc via ctypes.CDLL, if all necessary functions are already found in libuuid. Patch by Evgeny Sologubov. Issue #16102: Make uuid._netbios_getnode() work again on Python 3. | ||||
* | Backport b533cc11d114 to fix intermittent test_urllibnet failures. | Georg Brandl | 2014-09-30 | 1 | -1/+1 |
| | |||||
* | Add a dummy "touch" target to the Makefile so that the custom buildbots can ↵ | Georg Brandl | 2014-09-30 | 1 | -1/+4 |
| | | | | test this branch. | ||||
* | Fix-up for 0f362676460d: add missing size argument to ↵ | Georg Brandl | 2014-09-30 | 1 | -1/+5 |
| | | | | SSLFakeFile.readline(), as in 2.6 backport 8a6def3add5b | ||||
* | Issue #20939: Use www.example.com instead of www.python.org to avoid test | Ned Deily | 2014-03-27 | 3 | -18/+25 |
| | | | | failures when ssl is not present. | ||||
* | Issue #16039: CVE-2013-1752: Change use of readline in imaplib module to limit | Georg Brandl | 2014-09-30 | 3 | -1/+27 |
| | | | | line length. Patch by Emil Lind. | ||||
* | Issue #22421 - Secure pydoc server run. Bind it to localhost instead of all ↵ | Georg Brandl | 2014-09-17 | 3 | -2/+7 |
| | | | | interfaces. | ||||
* | Lax cookie parsing in http.cookies could be a security issue when combined | Antoine Pitrou | 2014-09-16 | 4 | -1/+16 |
| | | | | | | with non-standard cookie handling in some Web browsers. Reported by Sergey Bobrov. | ||||
* | Issue #22419: Limit the length of incoming HTTP request in wsgiref server to | Georg Brandl | 2014-09-30 | 4 | -1/+18 |
| | | | | | 65536 bytes and send a 414 error code for higher lengths. Patch contributed by Devin Cook. | ||||
* | Issue #22517: When a io.BufferedRWPair object is deallocated, clear its | Georg Brandl | 2014-09-30 | 3 | -0/+11 |
| | | | | weakrefs. | ||||
* | Issue #16041: CVE-2013-1752: poplib: Limit maximum line lengths to 2048 to | Georg Brandl | 2014-09-30 | 3 | -2/+19 |
| | | | | | prevent readline() calls from consuming too much memory. Patch by Jyrki Pulliainen. | ||||
* | Issue #16042: CVE-2013-1752: smtplib: Limit amount of data read by | Georg Brandl | 2014-09-30 | 4 | -4/+43 |
| | | | | limiting the call to readline(). Original patch by Christian Heimes. | ||||
* | Issue #18747: document issue with OpenSSL's CPRNG state and fork | Christian Heimes | 2013-10-29 | 2 | -0/+12 |
| | |||||
* | Issue #16038: CVE-2013-1752: ftplib: Limit amount of data read by | Georg Brandl | 2014-09-30 | 3 | -6/+43 |
| | | | | | limiting the call to readline(). Original patch by Michał Jastrzębski and Giampaolo Rodola. | ||||
* | Issue #16037: HTTPMessage.readheaders() raises an HTTPException when more than | Georg Brandl | 2014-09-30 | 4 | -2/+18 |
| | | | | 100 headers are read. Adapted from patch by Jyrki Pulliainen. | ||||
* | Issue #18709: Fix CVE-2013-4238. The SSL module now handles NULL bytes | Georg Brandl | 2014-09-30 | 4 | -6/+185 |
| | | | | | | | inside subjectAltName correctly. Formerly the module has used OpenSSL's GENERAL_NAME_print() function to get the string represention of ASN.1 strings for ``rfc822Name`` (email), ``dNSName`` (DNS) and ``uniformResourceIdentifier`` (URI). | ||||
* | Issue #13540: Update references to Action class to match syntax used for ↵ | Jason R. Coombs | 2014-08-03 | 1 | -2/+2 |
| | | | | other classes in this file. | ||||
* | Issue #13540: Removed redundant documentation about Action instance ↵ | Jason R. Coombs | 2014-07-20 | 1 | -49/+26 |
| | | | | attributes. Updated example and documentation per recommendations by Steven Bethard in msg149524. | ||||
* | Issue #13540: Expanded argparse documents to clarify the action API | Jason R. Coombs | 2011-12-14 | 1 | -19/+76 |
| | |||||
* | Issue #21323: Fix http.server to again handle scripts in CGI subdirectories, | Ned Deily | 2014-07-13 | 4 | -5/+25 |
| | | | | broken by the fix for security issue #19435. Patch by Zach Byrne. | ||||
* | expect the correct platform-dependent linesep | Benjamin Peterson | 2014-06-17 | 1 | -1/+1 |
| | |||||
* | url unquote the path before checking if it refers to a CGI script (closes ↵ | Benjamin Peterson | 2014-06-15 | 3 | -1/+9 |
| | | | | #21766) | ||||
* | fix poor spelling | Benjamin Peterson | 2014-04-14 | 1 | -1/+1 |
| | |||||
* | disallow a negative idx parameter | Benjamin Peterson | 2014-04-14 | 1 | -4/+5 |
| | |||||
* | in scan_once, prevent the reading of arbitrary memory when passed a negative ↵ | Benjamin Peterson | 2014-04-14 | 4 | -1/+12 |
| | | | | | | index Bug reported by Guido Vranken. | ||||
* | fix versionchanged version | Benjamin Peterson | 2014-04-04 | 1 | -2/+2 |
| | |||||
* | remove directory mode check from makedirs (closes #21082) | Benjamin Peterson | 2014-04-01 | 4 | -32/+20 |
| | |||||
* | use https docs url (#21115) | Benjamin Peterson | 2014-03-31 | 1 | -2/+2 |
| | |||||
* | add Ian Beer | Benjamin Peterson | 2014-03-31 | 1 | -0/+1 |
| | |||||
* | fix expandtabs overflow detection to be consistent and not rely on signed ↵ | Benjamin Peterson | 2014-03-30 | 1 | -19/+19 |
| | | | | overflow | ||||
* | use ssl.PROTOCOL_SSLv23 for maximum compatibility (closes #20896) | Benjamin Peterson | 2014-03-12 | 1 | -3/+8 |
| | |||||
* | Issue #20246: Fix test failures on FreeBSD. Patch by Ryan Smith-Roberts. | Stefan Krah | 2014-01-21 | 1 | -1/+1 |
| | |||||
* | update logo url (#20695) | Benjamin Peterson | 2014-02-20 | 1 | -1/+1 |
| | |||||
* | open retrieved file in binary mode, since it's now compressed | Benjamin Peterson | 2014-02-20 | 1 | -3/+3 |
| | |||||
* | complain when nbytes > buflen to fix possible buffer overflow (closes #20246) | Benjamin Peterson | 2014-01-14 | 4 | -0/+16 |
| | |||||
* | Issue #12226: HTTPS is now used by default when connecting to PyPI. | Antoine Pitrou | 2013-12-22 | 4 | -7/+9 |
| | |||||
* | Backout 7d399099334d. | Georg Brandl | 2013-11-04 | 1 | -3/+0 |
| | |||||
* | Backout 265d369ad3b9. | Georg Brandl | 2013-11-04 | 1 | -2/+1 |
| | |||||
* | Backout d80207d15294. | Georg Brandl | 2013-11-04 | 1 | -31/+0 |
| |