summaryrefslogtreecommitdiffstats
path: root/Misc/NEWS.d/next/Security
Commit message (Expand)AuthorAgeFilesLines
* Python 3.10.0a3v3.10.0a3Pablo Galindo2020-12-071-1/+0
* bpo-40791: Make compare_digest more constant-time. (GH-20444)Devin Jeanpierre2020-11-211-0/+1
* Python 3.10.0a2v3.10.0a2Pablo Galindo2020-11-032-5/+0
* bpo-42103: Improve validation of Plist files. (GH-22882)Serhiy Storchaka2020-11-021-0/+2
* bpo-42051: Reject XML entity declarations in plist files (#22760)Ronald Oussoren2020-10-191-0/+3
* Python 3.10.0a1v3.10.0a1Pablo Galindo2020-10-055-7/+0
* bpo-39603: Prevent header injection in http methods (GH-18485)AMIR2020-07-181-0/+2
* bpo-43104: Update NEWS to include CVE-2020-15801 reference (GH-21521)Steve Dower2020-07-171-1/+1
* bpo-41304: Ensure python3x._pth is loaded on Windows (GH-21495)Steve Dower2020-07-151-0/+1
* bpo-29778: Ensure python3.dll is loaded from correct locations when Python is...Steve Dower2020-07-061-0/+2
* bpo-41162: Clear audit hooks later during finalization (GH-21222)Konge2020-07-031-0/+1
* bpo-41004: Resolve hash collisions for IPv4Interface and IPv6Interface (GH-21...Ravi Teja P2020-06-291-0/+1
* Consolidate 3.9.0b1 NEWS in the master branchŁukasz Langa2020-05-191-2/+0
* bpo-40501: Replace ctypes code in uuid with native module (GH-19948)Steve Dower2020-05-121-0/+2
* Python 3.9.0a6v3.9.0a6Łukasz Langa2020-04-273-7/+0
* bpo-39503: CVE-2020-8492: Fix AbstractBasicAuthHandler (GH-18284)Victor Stinner2020-04-021-0/+5
* bpo-40121: Fixes audit event raised on creating a new socket (GH-19238)Steve Dower2020-03-311-0/+1
* bpo-39073: validate Address parts to disallow CRLF (#19007)Ashwin Ramaswami2020-03-301-0/+1
* Python 3.9.0a5v3.9.0a5Łukasz Langa2020-03-231-1/+0
* bpo-38576: Disallow control characters in hostnames in http.client (GH-18995)Ashwin Ramaswami2020-03-141-0/+1
* Python 3.9.0a4v3.9.0a4Łukasz Langa2020-02-253-3/+0
* bpo-39184: Add audit events to functions in `fcntl`, `msvcrt`, `os`, `resourc...Saiyang Gou2020-02-131-0/+1
* bpo-39184: Add audit events to command execution functions in os and pty modu...Saiyang Gou2020-02-051-0/+1
* bpo-39401: Avoid unsafe DLL load on Windows 7 and earlier (GH-18231)Steve Dower2020-01-291-0/+1
* Python 3.9.0a2v3.9.0a2Łukasz Langa2019-12-183-8/+0
* bpo-37228: Fix loop.create_datagram_endpoint()'s usage of SO_REUSEADDR (#17311)Kyle Stanley2019-12-091-0/+6
* bpo-38945: UU Encoding: Don't let newline in filename corrupt the output form...Matthew Rollings2019-12-021-0/+1
* bpo-38804: Fix REDoS in http.cookiejar (GH-17157)bcaller2019-11-221-0/+1
* Python 3.9.0a1v3.9.0a1Łukasz Langa2019-11-1913-26/+0
* bpo-38622: Add missing audit events for ctypes module (GH-17158)Steve Dower2019-11-181-0/+1
* bpo-38722: Runpy use io.open_code() (GH-17234)jsnklln2019-11-181-0/+2
* bpo-38418: Fixes audit event for os.system to be named 'os.system' (GH-16670)Steve Dower2019-10-181-0/+1
* bpo-38243, xmlrpc.server: Escape the server_title (GH-16373)Dong-hee Na2019-09-271-0/+3
* closes bpo-38174: Update vendored expat library to 2.2.8. (GH-16346)Benjamin Peterson2019-09-261-0/+2
* bpo-37764: Fix infinite loop when parsing unstructured email headers. (GH-15239)Ashwin Ramaswami2019-08-311-0/+1
* Fix typos in comments, docs and test names (#15018)Min ho Kim2019-07-301-1/+1
* bpo-34155: Dont parse domains containing @ (GH-13079)jpic2019-07-171-0/+1
* bpo-37461: Fix infinite loop in parsing of specially crafted email headers (G...Abhilash Raj2019-07-171-0/+2
* bpo-37463: match_hostname requires quad-dotted IPv4 (GH-14499)Christian Heimes2019-07-021-0/+4
* bpo-37363: Add audit events on startup for the run commands (GH-14524)Steve Dower2019-07-011-0/+2
* bpo-37363: Add audit events for a range of modules (GH-14301)Steve Dower2019-06-241-0/+5
* bpo-37364: Use io.open_code() to read .pth files (GH-14299)Steve Dower2019-06-211-0/+1
* bpo-34631: Updated OpenSSL to 1.1.1c in Windows installer (GH-14163)Steve Dower2019-06-171-0/+1
* Python 3.8.0b1v3.8.0b1Łukasz Langa2019-06-043-6/+0
* bpo-35907: Fix typo in the NEWS entry (GH-13559)Victor Stinner2019-05-241-1/+1
* bpo-35907: Clarify the NEWS entry (GH-13523)Victor Stinner2019-05-241-2/+3
* bpo-33164: update blake2 implementation (GH-6286)David Carlier2019-05-231-0/+1
* bpo-35907, CVE-2019-9948: urllib rejects local_file:// scheme (GH-13474)Victor Stinner2019-05-221-0/+2
* bpo-33529, email: Fix infinite loop in email header encoding (GH-12020)Krzysztof Wojcik2019-05-141-0/+2
* Python 3.8.0a4v3.8.0a4Łukasz Langa2019-05-063-7/+0
generated by cgit v0.12 at 2024-10-14 04:51:40 (GMT)