From 026337a7101369297c8083047d2f3c6fc9dd1e2b Mon Sep 17 00:00:00 2001 From: Christian Heimes Date: Sat, 22 Sep 2018 06:42:29 +0200 Subject: bpo-34623: Mention CVE-2018-14647 in news entry (GH-9482) https://bugs.python.org/issue34623 --- Misc/NEWS.d/next/Security/2018-09-10-16-05-39.bpo-34623.Ua9jMv.rst | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Misc/NEWS.d/next/Security/2018-09-10-16-05-39.bpo-34623.Ua9jMv.rst b/Misc/NEWS.d/next/Security/2018-09-10-16-05-39.bpo-34623.Ua9jMv.rst index 31ad92e..cbaa4b7 100644 --- a/Misc/NEWS.d/next/Security/2018-09-10-16-05-39.bpo-34623.Ua9jMv.rst +++ b/Misc/NEWS.d/next/Security/2018-09-10-16-05-39.bpo-34623.Ua9jMv.rst @@ -1,2 +1,2 @@ -The C accelerated _elementtree module now initializes hash randomization -salt from _Py_HashSecret instead of libexpat's default CSPRNG. +CVE-2018-14647: The C accelerated _elementtree module now initializes hash +randomization salt from _Py_HashSecret instead of libexpat's default CSPRNG. -- cgit v0.12