summaryrefslogtreecommitdiffstats
path: root/Misc/NEWS.d/next/Security
Commit message (Expand)AuthorAgeFilesLines
* bpo-38243, xmlrpc.server: Escape the server_title (GH-16373)Dong-hee Na2019-09-271-0/+3
* closes bpo-38174: Update vendored expat library to 2.2.8. (GH-16346)Benjamin Peterson2019-09-261-0/+2
* bpo-37764: Fix infinite loop when parsing unstructured email headers. (GH-15239)Ashwin Ramaswami2019-08-311-0/+1
* Fix typos in comments, docs and test names (#15018)Min ho Kim2019-07-301-1/+1
* bpo-34155: Dont parse domains containing @ (GH-13079)jpic2019-07-171-0/+1
* bpo-37461: Fix infinite loop in parsing of specially crafted email headers (G...Abhilash Raj2019-07-171-0/+2
* bpo-37463: match_hostname requires quad-dotted IPv4 (GH-14499)Christian Heimes2019-07-021-0/+4
* bpo-37363: Add audit events on startup for the run commands (GH-14524)Steve Dower2019-07-011-0/+2
* bpo-37363: Add audit events for a range of modules (GH-14301)Steve Dower2019-06-241-0/+5
* bpo-37364: Use io.open_code() to read .pth files (GH-14299)Steve Dower2019-06-211-0/+1
* bpo-34631: Updated OpenSSL to 1.1.1c in Windows installer (GH-14163)Steve Dower2019-06-171-0/+1
* Python 3.8.0b1v3.8.0b1Łukasz Langa2019-06-043-6/+0
* bpo-35907: Fix typo in the NEWS entry (GH-13559)Victor Stinner2019-05-241-1/+1
* bpo-35907: Clarify the NEWS entry (GH-13523)Victor Stinner2019-05-241-2/+3
* bpo-33164: update blake2 implementation (GH-6286)David Carlier2019-05-231-0/+1
* bpo-35907, CVE-2019-9948: urllib rejects local_file:// scheme (GH-13474)Victor Stinner2019-05-221-0/+2
* bpo-33529, email: Fix infinite loop in email header encoding (GH-12020)Krzysztof Wojcik2019-05-141-0/+2
* Python 3.8.0a4v3.8.0a4Łukasz Langa2019-05-063-7/+0
* bpo-30458: Use InvalidURL instead of ValueError. (GH-13044)Gregory P. Smith2019-05-011-1/+1
* bpo-30458: Disallow control chars in http URLs. (GH-12755)Gregory P. Smith2019-05-011-0/+1
* bpo-36742: Fixes handling of pre-normalization characters in urlsplit() (GH-1...Steve Dower2019-04-301-0/+1
* bpo-35755: Remove current directory from posixpath.defpath (GH-11586)Victor Stinner2019-04-171-0/+5
* v3.8.0a3v3.8.0a3Łukasz Langa2019-03-252-7/+0
* bpo-35121: prefix dot in domain for proper subdomain validation (GH-10258)Xtreak2019-03-101-0/+4
* bpo-36216: Add check for characters in netloc that normalize to separators (G...Steve Dower2019-03-071-0/+3
* [blurb] v3.8.0a1Łukasz Langa2019-02-0312-29/+0
* bpo-35746: Fix segfault in ssl's cert parser (GH-11569)Christian Heimes2019-01-151-0/+3
* bpo-34812: subprocess._args_from_interpreter_flags(): add isolated (GH-10675)Victor Stinner2018-11-231-0/+4
* bpo-34791: xml package obeys ignore env flags (GH-9544)Christian Heimes2018-09-241-0/+3
* bpo-17239: Disable external entities in SAX parser (GH-9217)Christian Heimes2018-09-231-0/+3
* bpo-34623: Mention CVE-2018-14647 in news entry (GH-9482)Christian Heimes2018-09-221-2/+2
* bpo-34623: Use XML_SetHashSalt in _elementtree (GH-9146)Christian Heimes2018-09-181-0/+2
* bpo-32533: Fixed thread-safety of error handling in _ssl. (GH-7158)Steve Dower2018-09-171-0/+1
* bpo-34405: Updated to OpenSSL 1.1.0i for Windows builds. (GH-8775)Steve Dower2018-08-151-0/+1
* bpo-33871: Fix os.sendfile(), os.writev(), os.readv(), etc. (GH-7931)Serhiy Storchaka2018-07-311-0/+3
* bpo-33136: Harden ssl module against CVE-2018-8970 (GH-6229)Christian Heimes2018-03-251-0/+3
* bpo-33001: Prevent buffer overrun in os.symlink (GH-5989)Steve Dower2018-03-051-0/+1
* bpo-32981: Fix catastrophic backtracking vulns (#5955)Jamie Davis2018-03-041-0/+4
* [bpo-28414] Make all hostnames in SSL module IDN A-labels (GH-5128)Christian Heimes2018-02-241-0/+1
* Update PyDoc topics and NEWS blurbs for 3.7.0a1Ned Deily2017-09-197-30/+0
* bpo-29505: Add fuzz tests for float(str), int(str), unicode(str) (#2878)Devin Jeanpierre2017-09-061-0/+1
* bpo-29781: Fix SSLObject.version before handshake (#3364)Christian Heimes2017-09-061-0/+2
* Link to blurb on PyPI in the NEWS.d READMEs. (#3323)Gregory P. Smith2017-09-051-1/+3
* Blurbify master branch. (#3298)larryhastings2017-09-044-0/+25
* bpo-30947: Update libexpat from 2.2.1 to 2.2.3 (#3106)Victor Stinner2017-08-181-0/+2
* Add "Misc/NEWS.d" directory tree for "blurb". (GH-2316)larryhastings2017-06-221-0/+1
generated by cgit v0.12 at 2024-12-04 08:07:59 (GMT)