Rooba
/
cpython
mirror of https://github.com/python/cpython.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cpython/Modules/clinic
History
Sebastian Pipping 200762426b
[3.9] gh-115398: Expose Expat >=2.6.0 reparse deferral API (CVE-2023-52425) (GH-115623) (GH-116272) 
Allow controlling Expat >=2.6.0 reparse deferral (CVE-2023-52425) by adding five new methods:

- `xml.etree.ElementTree.XMLParser.flush`
- `xml.etree.ElementTree.XMLPullParser.flush`
- `xml.parsers.expat.xmlparser.GetReparseDeferralEnabled`
- `xml.parsers.expat.xmlparser.SetReparseDeferralEnabled`
- `xml.sax.expatreader.ExpatParser.flush`

Based on the "flush" idea from https://github.com/python/cpython/pull/115138#issuecomment-1932444270 .

Includes code suggested-by: Snild Dolkow <snild@sony.com>
and by core dev Serhiy Storchaka.

Co-authored-by: Gregory P. Smith <greg@krypto.org>
 		2024-03-07 00:03:30 +01:00
..
_abc.c.h
_asynciomodule.c.h
_bisectmodule.c.h
_bz2module.c.h
_codecsmodule.c.h bpo-45467: Fix IncrementalDecoder and StreamReader in the "raw-unicode-escape" codec (GH-28944) (GH-28953) 2021-10-14 21:23:52 +03:00
_collectionsmodule.c.h
_contextvarsmodule.c.h
_cryptmodule.c.h
_curses_panel.c.h
_cursesmodule.c.h [3.9] bpo-42681: Fix range checks for color and pair numbers in curses (GH-23874). (GH-24077) 2021-01-04 00:55:23 +02:00
_datetimemodule.c.h
_dbmmodule.c.h
_elementtree.c.h [3.9] gh-115398: Expose Expat >=2.6.0 reparse deferral API (CVE-2023-52425) (GH-115623) (GH-116272) 2024-03-07 00:03:30 +01:00
_gdbmmodule.c.h [3.9] bpo-45060: Get rid of few uses of the equality operators with None (GH-28087). (GH-28093) 2021-09-01 09:51:01 +03:00
_hashopenssl.c.h
_heapqmodule.c.h
_lzmamodule.c.h
_opcode.c.h
_operator.c.h [3.9] bpo-44558: Match countOf `is`/`==` treatment to c (GH-27007). (GH-27055) 2021-07-07 23:55:22 +09:00
_pickle.c.h
_queuemodule.c.h
_randommodule.c.h [3.9] bpo-41052: Fix pickling heap types implemented in C with protocols 0 and 1 (GH-22870). (GH-22963) 2020-10-25 17:56:17 +02:00
_sre.c.h
_ssl.c.h
_statisticsmodule.c.h
_struct.c.h
_testmultiphase.c.h [3.9] gh-91583: AC: Fix regression for functions with defining_class (GH-91739) (GH-92080) 2022-05-03 11:54:06 +03:00
_tkinter.c.h
_tracemalloc.c.h
_weakref.c.h
_winapi.c.h
arraymodule.c.h [3.9] [codemod] Fix non-matching bracket pairs (GH-28473) (GH-28512) 2021-09-22 17:32:04 +02:00
audioop.c.h
binascii.c.h
cmathmodule.c.h
fcntlmodule.c.h
gcmodule.c.h
grpmodule.c.h
itertoolsmodule.c.h [3.9] bpo-46728: fix docstring of combinations_with_replacement for consistency (GH-31293). (GH-31356) 2022-02-15 21:22:01 +09:00
mathmodule.c.h
md5module.c.h
posixmodule.c.h [3.9] gh-91583: AC: Fix regression for functions with defining_class (GH-91739) (GH-92080) 2022-05-03 11:54:06 +03:00
pwdmodule.c.h
pyexpat.c.h [3.9] gh-115398: Expose Expat >=2.6.0 reparse deferral API (CVE-2023-52425) (GH-115623) (GH-116272) 2024-03-07 00:03:30 +01:00
resource.c.h
selectmodule.c.h [3.9] bpo-41857: mention timeout argument units in select.poll() and select.depoll() doc-strings (GH-22406) 2022-01-21 11:37:39 +02:00
sha1module.c.h
sha256module.c.h
sha512module.c.h
signalmodule.c.h [3.9] bpo-41498: Fix build on platforms without sigset_t (GH-29770) (GH-29774) 2021-11-25 13:02:54 +01:00
spwdmodule.c.h
symtablemodule.c.h
unicodedata.c.h
zlibmodule.c.h