bpo-35907: Clarify the NEWS entry (GH-13557)

2019-05-24 23:28:56 +02:00 · 2019-05-24 23:28:56 +02:00 · d9d1045837
parent 25d8404c35
commit d9d1045837
2 changed files with 3 additions and 3 deletions
--- a/Misc/NEWS.d/next/Library/2019-02-13-17-21-10.bpo-35907.ckk2zg.rst
+++ b/Misc/NEWS.d/next/Library/2019-02-13-17-21-10.bpo-35907.ckk2zg.rst
@ -1,3 +0,0 @@
 CVE-2019-9948: Avoid file reading as disallowing the unnecessary URL scheme in
 :func:`urllib.urlopen`, :meth:`urllib.URLopener.open` and
 :meth:`urllib.URLopener.retrieve`.
--- a/Misc/NEWS.d/next/Security/2019-02-13-17-21-10.bpo-35907.ckk2zg.rst
+++ b/Misc/NEWS.d/next/Security/2019-02-13-17-21-10.bpo-35907.ckk2zg.rst
@ -0,0 +1,3 @@
 CVE-2019-9948: Avoid file reading by disallowing ``local-file://`` and
 ``local_file://`` URL schemes in :func:`urllib.urlopen`,
 :meth:`urllib.URLopener.open` and :meth:`urllib.URLopener.retrieve`.