summaryrefslogtreecommitdiffstats
path: root/Lib
Commit message (Collapse)AuthorAgeFilesLines
* version bumpv2.6.9Barry Warsaw2013-10-292-2/+2
|
* updating topicsBarry Warsaw2013-10-291-1/+1
|
* Typo caught by : Arfrever Frehtes Taifersar Arahesis.Barry Warsaw2013-10-011-1/+1
|
* Bump to 2.6.9rc1Barry Warsaw2013-10-012-2/+2
|
* Regenerate pydoc_topics.pyBarry Warsaw2013-10-011-1/+1
|
* - Issue #16040: CVE-2013-1752: nntplib: Limit maximum line lengths to 2048 toBarry Warsaw2013-09-302-1/+75
| | | | | prevent readline() calls from consuming too much memory. Patch by Jyrki Pulliainen.
* - Issue #16041: CVE-2013-1752: poplib: Limit maximum line lengths to 2048 toBarry Warsaw2013-09-302-1/+84
| | | | | prevent readline() calls from consuming too much member. Patch by Jyrki Pulliainen.
* - Issue #16037: HTTPMessage.readheaders() raises an HTTPException when moreBarry Warsaw2013-09-292-0/+14
| | | | than 100 headers are read. Adapted from patch by Jyrki Pulliainen.
* - Issue #16038: CVE-2013-1752: ftplib: Limit amount of data read byBarry Warsaw2013-09-252-4/+33
| | | | | | | limiting the call to readline(). Original patch by Michał Jastrzębski and Giampaolo Rodola. with test fixes by Serhiy Storchaka.
* - Issue #16039: CVE-2013-1752: Change use of readline in imaplib module toBarry Warsaw2013-09-222-1/+23
| | | | limit line length. Patch by Emil Lind.
* #14984: only import pwd on POSIX.R David Murray2013-09-181-1/+3
|
* Add versionchanged for #14984, remove extra blank from string.R David Murray2013-09-181-1/+1
|
* #14984: On POSIX, enforce permissions when reading default .netrc.R David Murray2013-09-162-2/+44
| | | | | | | | Initial patch by Bruno Piguet. This is implemented as if a useful .netrc file could exist without passwords, which is possible in the general case; but in fact our netrc implementation does not support it. Fixing that issue will be an enhancement.
* #16042: CVE-2013-1752: Limit amount of data read by limiting the call to ↵Andrew Kuchling2013-09-152-4/+38
| | | | | | | | | | readline(). The SSLFakeFile.readline() method needs to support limiting readline() as well. It's not a full emulation of readline()'s signature, but this class is only used by smtplib's code, so it doesn't have to be. Modified version of original patch by Christian Heimes.
* Python 2.6's ssl module has neither OPENSSL_VERSION_INFO nor ↵Christian Heimes2013-09-031-15/+6
| | | | _OPENSSL_API_VERSION
* Issue #18709: Fix issue with IPv6 address in subjectAltName on Mac OS X TigerChristian Heimes2013-08-251-7/+15
|
* - Issue #18709: Fix CVE-2013-4238. The SSL module now handles NULL bytesBarry Warsaw2013-08-233-32/+146
| | | | | | | inside subjectAltName correctly. Formerly the module has used OpenSSL's GENERAL_NAME_print() function to get the string represention of ASN.1 strings for `rfc822Name` (email), `dNSName` (DNS) and `uniformResourceIdentifier` (URI).
* Fix UnboundLocalError regression due to previous incorrect fix forBarry Warsaw2013-08-211-1/+1
| | | | issue 16248.
* - Issue #16248: Disable code execution from the user's home directory byBarry Warsaw2013-02-201-1/+3
| | | | tkinter when the -E flag is passed to Python. Patch by Zachary Ware.
* Bump to 2.6.8v2.6.8Barry Warsaw2012-04-102-2/+2
|
* update docsBarry Warsaw2012-04-101-1/+1
|
* Bump to 2.6.8rc2v2.6.8rc2Barry Warsaw2012-03-172-2/+2
|
* Update Docs and NEWS for 2.6.8rc2.Barry Warsaw2012-03-171-1/+1
|
* Bump to version 2.6.8rc1.Barry Warsaw2012-02-233-5/+5
|
* Back port from 2.7:Barry Warsaw2012-02-221-2/+5
| | | | | | | | | http://hg.python.org/cpython/rev/48705250232c changeset: 75187:48705250232c branch: 2.7 parent: 75184:9a1d902714ae user: Antoine Pitrou <solipsis@pitrou.net> date: Wed Feb 22 22:16:25 2012 +0100
* Backport from 2.7:Barry Warsaw2012-02-221-3/+4
| | | | | | | | | changeset: 75153:9b7c6dd19e25 branch: 2.7 parent: 75151:b1a02c17b327 user: Antoine Pitrou <solipsis@pitrou.net> date: Tue Feb 21 22:02:04 2012 +0100 files: Lib/test/test_os.py
* Backport from 2.7 branch.Barry Warsaw2012-02-221-2/+8
| | | | | | | changeset: 75165:780008020c40 user: Antoine Pitrou <solipsis@pitrou.net> date: Wed Feb 22 03:33:56 2012 +0100 summary: Fix (presumably) test_hash under big-endian systems (PPC).
* Let's sort the keys so that this test passes even with random hashes.Barry Warsaw2012-02-211-1/+1
|
* Whitespace normalizationBarry Warsaw2012-02-211-1/+1
|
* - Issue #13703: oCERT-2011-003: add -R command-line option and PYTHONHASHSEEDBarry Warsaw2012-02-218-38/+222
| | | | | | environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. Patch by David Malcolm, based on work by Victor Stinner.
* Back port Python 2.7 fix for test_invalid_redirect() in test_urllib.py.Barry Warsaw2012-02-201-0/+1
|
* Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in SimpleXMLRPCServerCharles-François Natali2012-02-181-1/+4
| | | | upon malformed POST request.
* Remove mentions of previous license in profile module (#12417 followup)Éric Araujo2011-07-281-2/+0
|
* fix wsBenjamin Peterson2011-06-291-3/+3
|
* update profile license (closes #12417)Benjamin Peterson2011-06-272-48/+28
|
* Replay svn r88850.v2.6.7Barry Warsaw2011-06-043-3/+3
|
* Replay changeset 70248:c714e2f92f63 from fubar branch. Original commitBarry Warsaw2011-05-233-3/+3
| | | | | | message: Cross-port changes for 2.6.7rc2 from the Subversion branch.
* Replay changeset 70238:03e488b5c009 from fubar branch. Original commitBarry Warsaw2011-05-233-3/+3
| | | | | | | | message: Reconcile with the 2.6svn branch. The 2.6.7 release will be made from Subversion, but there were differences, so this brings them in sync. These changes should *not* propagate to any newer versions.
* Merge issue 11662 from 2.5.Guido van Rossum2011-03-294-0/+58
|\
| * Add tests for the urllib[2] vulnerability. Change to raise exceptions.guido@google.com2011-03-284-5/+45
| |
| * Add FTP to the allowed url schemes. Add Misc/NEWS.guido@google.com2011-03-242-4/+6
| |
| * Issue 22663: fix redirect vulnerability in urllib/urllib2.guido@google.com2011-03-242-2/+18
| |
* | merge from 2.5 branch.Senthil Kumaran2011-03-171-1/+3
|\ \ | |/
| * Fix issue11442 - Add a charset parameter to the Content-type to avoid XSS ↵Senthil Kumaran2011-03-171-1/+3
| | | | | | | | | | | | attacks. Patch by Tom N. (Backported from py3k codeline).
| * Add .hgeol file and fix newlines in the 2.5 branch.Georg Brandl2011-03-051-31/+31
| |
| * Prepare for 2.5.5.v2.5.5Martin v. Löwis2010-01-312-3/+8
| |
| * Prepare for 2.5.5c2.v2.5.5c2Martin v. Löwis2010-01-242-1/+6
| |
| * Prepare for 2.5.5c1.v2.5.5c1Martin v. Löwis2010-01-142-1/+6
| |
| * Issue #7403: logging: Fixed possible race condition in lock creation.Vinay Sajip2009-11-271-4/+4
| |
| * #6990: clear threading.local's key only after its thread state is removed:Philip Jenvey2009-09-291-1/+40
| | | | | | | | | | | | fixes local subclasses leaving old state around after a ref cycle GC which could be recycled by new locals (backported from r75123)
generated by cgit v0.12 at 2025-12-26 15:48:00 (GMT)