summaryrefslogtreecommitdiffstats
path: root/Misc/NEWS.d/next/Security
Commit message (Expand)AuthorAgeFilesLines
* Python 3.8.9v3.8.9Łukasz Langa2021-04-023-14/+0
* bpo-42988: Remove the pydoc getfile feature (GH-25015)Miss Islington (bot)2021-03-291-0/+4
* [3.8] bpo-43285 Make ftplib not trust the PASV response. (GH-24838) (GH-24881)Gregory P. Smith2021-03-151-0/+8
* [3.8] bpo-43439: Add audit hooks for gc functions (GH-24794). (GH-24810)Pablo Galindo2021-03-101-0/+2
* Python 3.8.8rc1v3.8.8rc1Łukasz Langa2021-02-162-3/+0
* [3.8] bpo-42967: only use '&' as a query string separator (GH-24297) (#24529)Senthil Kumaran2021-02-151-0/+1
* closes bpo-42938: Replace snprintf with Python unicode formatting in ctypes p...Miss Islington (bot)2021-01-181-0/+2
* Python 3.8.7rc1v3.8.7rc1Łukasz Langa2020-12-073-6/+0
* bpo-40791: Make compare_digest more constant-time. (GH-20444)Miss Islington (bot)2020-11-211-0/+1
* [3.8] bpo-42103: Improve validation of Plist files. (GH-22882) (GH-23116)Serhiy Storchaka2020-11-031-0/+2
* bpo-42051: Reject XML entity declarations in plist files (GH-22760)Miss Skeleton (bot)2020-10-201-0/+3
* Python 3.8.5v3.8.5Łukasz Langa2020-07-202-3/+0
* bpo-39603: Prevent header injection in http methods (GH-18485)Miss Islington (bot)2020-07-181-0/+2
* bpo-41304: Update NEWS to include CVE-2020-15801 reference (GH-21521)Miss Islington (bot)2020-07-171-1/+1
* bpo-41304: Ensure python3x._pth is loaded on Windows (GH-21495)Miss Islington (bot)2020-07-151-0/+1
* Python 3.8.4v3.8.4Łukasz Langa2020-07-132-3/+0
* bpo-29778: Ensure python3.dll is loaded from correct locations when Python is...Miss Islington (bot)2020-07-061-0/+2
* bpo-41162: Clear audit hooks later during finalization (GH-21222)Steve Dower2020-07-031-0/+1
* Python 3.8.4rc1v3.8.4rc1Łukasz Langa2020-06-292-2/+0
* bpo-41004: Resolve hash collisions for IPv4Interface and IPv6Interface (GH-21...Miss Islington (bot)2020-06-291-0/+1
* bpo-39073: validate Address parts to disallow CRLF (GH-19007)Miss Islington (bot)2020-05-271-0/+1
* Python 3.8.3rc1v3.8.3rc1Łukasz Langa2020-04-293-7/+0
* bpo-39503: CVE-2020-8492: Fix AbstractBasicAuthHandler (GH-18284) (GH-19296)Miss Islington (bot)2020-04-021-0/+5
* bpo-40121: Fixes audit event raised on creating a new socket (GH-19238)Miss Islington (bot)2020-03-311-0/+1
* bpo-38576: Disallow control characters in hostnames in http.client (GH-18995)Miss Islington (bot)2020-03-141-0/+1
* Python 3.8.2rc2v3.8.2rc2Łukasz Langa2020-02-171-1/+0
* bpo-39184: Add audit events to functions in `fcntl`, `msvcrt`, `os`, `resourc...Steve Dower2020-02-131-0/+1
* Python 3.8.2rc1v3.8.2rc1Łukasz Langa2020-02-102-2/+0
* bpo-39184: Add audit events to command execution functions in os and pty modu...Miss Islington (bot)2020-02-051-0/+1
* [3.8] bpo-39401: Avoid unsafe DLL load on Windows 7 and earlier (GH-18231) (G...Steve Dower2020-01-301-0/+1
* Python 3.8.1rc1v3.8.1rc1Łukasz Langa2019-12-096-12/+0
* bpo-37228: Fix loop.create_datagram_endpoint()'s usage of SO_REUSEADDR (GH-17...Miss Islington (bot)2019-12-091-0/+6
* bpo-38945: UU Encoding: Don't let newline in filename corrupt the output form...Miss Islington (bot)2019-12-021-0/+1
* bpo-38804: Fix REDoS in http.cookiejar (GH-17157)Miss Islington (bot)2019-11-221-0/+1
* bpo-38722: Runpy use io.open_code() (GH-17234)Miss Islington (bot)2019-11-181-0/+2
* bpo-38622: Add missing audit events for ctypes module (GH-17158)Miss Islington (bot)2019-11-181-0/+1
* bpo-38418: Fixes audit event for os.system to be named 'os.system' (GH-16670)Miss Islington (bot)2019-10-181-0/+1
* v3.8.0rc1v3.8.0rc1Łukasz Langa2019-10-013-6/+0
* bpo-38243, xmlrpc.server: Escape the server_title (GH-16373)Miss Islington (bot)2019-09-271-0/+3
* [3.8] closes bpo-38174: Update vendored expat library to 2.2.8. (GH-16409)Benjamin Peterson2019-09-261-0/+2
* [3.8] bpo-37764: Fix infinite loop when parsing unstructured email headers. (...Abhilash Raj2019-09-051-0/+1
* Python 3.8.0b4v3.8.0b4Łukasz Langa2019-08-291-1/+0
* bpo-34155: Dont parse domains containing @ (GH-13079)Miss Islington (bot)2019-08-091-0/+1
* Python 3.8.0b3v3.8.0b3Łukasz Langa2019-07-291-2/+0
* bpo-37461: Fix infinite loop in parsing of specially crafted email headers (G...Miss Islington (bot)2019-07-171-0/+2
* Python 3.8.0b2v3.8.0b2Łukasz Langa2019-07-045-13/+0
* bpo-37463: match_hostname requires quad-dotted IPv4 (GH-14499)Miss Islington (bot)2019-07-021-0/+4
* bpo-37363: Add audit events on startup for the run commands (GH-14524)Miss Islington (bot)2019-07-011-0/+2
* bpo-37363: Add audit events for a range of modules (GH-14301)Miss Islington (bot)2019-06-241-0/+5
* bpo-37364: Use io.open_code() to read .pth files (GH-14299)Miss Islington (bot)2019-06-211-0/+1
generated by cgit v0.12 at 2024-11-25 20:05:57 (GMT)