summaryrefslogtreecommitdiffstats
path: root/Misc/NEWS.d/next/Security
Commit message (Expand)AuthorAgeFilesLines
* bpo-37363: Add audit events to the `http.client` module (GH-21321)Saiyang Gou2021-04-231-0/+1
* bpo-43756: Add new audit event for new arguments added to glob.glob (GH-25239)Saiyang Gou2021-04-211-0/+2
* bpo-43472: Ensure PyInterpreterState_New audit events are raised when called ...Steve Dower2021-04-211-0/+3
* bpo-43362: Fix invalid free and return check in _sha3 module (GH-25463)Christian Heimes2021-04-181-0/+2
* bpo-43075: Fix ReDoS in urllib AbstractBasicAuthHandler (GH-24391)Yeting Li2021-04-071-0/+1
* Python 3.10.0a7v3.10.0a7Pablo Galindo2021-04-053-14/+0
* bpo-42988: Remove the pydoc getfile feature (GH-25015)Victor Stinner2021-03-291-0/+4
* bpo-43285 Make ftplib not trust the PASV response. (GH-24838)Gregory P. Smith2021-03-151-0/+8
* bpo-43439: Add audit hooks for gc functions (GH-24794)Pablo Galindo2021-03-101-0/+2
* Python 3.10.0a6Pablo Galindo2021-03-011-1/+0
* bpo-42967: only use '&' as a query string separator (#24297)Adam Goldschmidt2021-02-141-0/+1
* Python 3.10.0a5Pablo Galindo2021-02-021-2/+0
* closes bpo-42938: Replace snprintf with Python unicode formatting in ctypes p...Benjamin Peterson2021-01-181-0/+2
* Python 3.10.0a3v3.10.0a3Pablo Galindo2020-12-071-1/+0
* bpo-40791: Make compare_digest more constant-time. (GH-20444)Devin Jeanpierre2020-11-211-0/+1
* Python 3.10.0a2v3.10.0a2Pablo Galindo2020-11-032-5/+0
* bpo-42103: Improve validation of Plist files. (GH-22882)Serhiy Storchaka2020-11-021-0/+2
* bpo-42051: Reject XML entity declarations in plist files (#22760)Ronald Oussoren2020-10-191-0/+3
* Python 3.10.0a1v3.10.0a1Pablo Galindo2020-10-055-7/+0
* bpo-39603: Prevent header injection in http methods (GH-18485)AMIR2020-07-181-0/+2
* bpo-43104: Update NEWS to include CVE-2020-15801 reference (GH-21521)Steve Dower2020-07-171-1/+1
* bpo-41304: Ensure python3x._pth is loaded on Windows (GH-21495)Steve Dower2020-07-151-0/+1
* bpo-29778: Ensure python3.dll is loaded from correct locations when Python is...Steve Dower2020-07-061-0/+2
* bpo-41162: Clear audit hooks later during finalization (GH-21222)Konge2020-07-031-0/+1
* bpo-41004: Resolve hash collisions for IPv4Interface and IPv6Interface (GH-21...Ravi Teja P2020-06-291-0/+1
* Consolidate 3.9.0b1 NEWS in the master branchŁukasz Langa2020-05-191-2/+0
* bpo-40501: Replace ctypes code in uuid with native module (GH-19948)Steve Dower2020-05-121-0/+2
* Python 3.9.0a6v3.9.0a6Łukasz Langa2020-04-273-7/+0
* bpo-39503: CVE-2020-8492: Fix AbstractBasicAuthHandler (GH-18284)Victor Stinner2020-04-021-0/+5
* bpo-40121: Fixes audit event raised on creating a new socket (GH-19238)Steve Dower2020-03-311-0/+1
* bpo-39073: validate Address parts to disallow CRLF (#19007)Ashwin Ramaswami2020-03-301-0/+1
* Python 3.9.0a5v3.9.0a5Łukasz Langa2020-03-231-1/+0
* bpo-38576: Disallow control characters in hostnames in http.client (GH-18995)Ashwin Ramaswami2020-03-141-0/+1
* Python 3.9.0a4v3.9.0a4Łukasz Langa2020-02-253-3/+0
* bpo-39184: Add audit events to functions in `fcntl`, `msvcrt`, `os`, `resourc...Saiyang Gou2020-02-131-0/+1
* bpo-39184: Add audit events to command execution functions in os and pty modu...Saiyang Gou2020-02-051-0/+1
* bpo-39401: Avoid unsafe DLL load on Windows 7 and earlier (GH-18231)Steve Dower2020-01-291-0/+1
* Python 3.9.0a2v3.9.0a2Łukasz Langa2019-12-183-8/+0
* bpo-37228: Fix loop.create_datagram_endpoint()'s usage of SO_REUSEADDR (#17311)Kyle Stanley2019-12-091-0/+6
* bpo-38945: UU Encoding: Don't let newline in filename corrupt the output form...Matthew Rollings2019-12-021-0/+1
* bpo-38804: Fix REDoS in http.cookiejar (GH-17157)bcaller2019-11-221-0/+1
* Python 3.9.0a1v3.9.0a1Łukasz Langa2019-11-1913-26/+0
* bpo-38622: Add missing audit events for ctypes module (GH-17158)Steve Dower2019-11-181-0/+1
* bpo-38722: Runpy use io.open_code() (GH-17234)jsnklln2019-11-181-0/+2
* bpo-38418: Fixes audit event for os.system to be named 'os.system' (GH-16670)Steve Dower2019-10-181-0/+1
* bpo-38243, xmlrpc.server: Escape the server_title (GH-16373)Dong-hee Na2019-09-271-0/+3
* closes bpo-38174: Update vendored expat library to 2.2.8. (GH-16346)Benjamin Peterson2019-09-261-0/+2
* bpo-37764: Fix infinite loop when parsing unstructured email headers. (GH-15239)Ashwin Ramaswami2019-08-311-0/+1
* Fix typos in comments, docs and test names (#15018)Min ho Kim2019-07-301-1/+1
* bpo-34155: Dont parse domains containing @ (GH-13079)jpic2019-07-171-0/+1
generated by cgit v0.12 at 2025-02-12 13:54:57 (GMT)