d751040b1a
Issue #26171 : Prevent buffer overflow in get_data
...
Backport of 01ddd608b85c.
2016-09-14 08:37:28 +03:00
1f0e7c9933
rearrange methodcaller_new so that the main error case does not cause uninitialized memory usage ( closes #27783 )
2016-08-16 23:35:35 -07:00
3a27b0857e
do not decref value borrowed from list ( closes #27774 )
2016-08-15 22:01:41 -07:00
4f976513ef
fix possible integer overflow in binascii.b2a_qp ( closes #27760 )
...
Reported by Thomas E. Hybel
2016-08-13 18:33:33 -07:00
6e01d90cc8
check for overflow in join_append_data ( closes #27758 )
...
Reported by Thomas E. Hybel
2016-08-13 17:17:06 -07:00
6f25003291
Issue #20160 : Handled passing of large structs to callbacks correctly.
2016-08-05 21:24:27 +01:00
fb7929044a
Switch upload.pypi.io to upload.pypi.org
2016-08-03 18:43:38 -04:00
4cbb23f8f2
Prevent HTTPoxy attack (CVE-2016-1000110)
...
Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which
indicates that the script is in CGI mode.
Issue #27568 Reported and patch contributed by Rémi Rampin.
2016-07-30 23:24:16 -07:00
d27a7c1f22
Issue #27369 : Merge test_pyexpat from 3.2 into 3.3
2016-07-14 01:42:53 +00:00
076ca6c3c8
Issue #27369 : Don’t test error message detail that changed in Expat 2.2.0
2016-07-14 01:31:46 +00:00
2cdcaf1353
Issue #22758 : Move NEWS entry to Library section
2016-07-14 01:17:03 +00:00
e3638944a9
#22758 null merge
2016-07-10 14:10:08 -04:00
5f21f43af7
#22758 : fix regression in handling of secure cookies.
...
This backports the fix from #16611 , per discussion with the release
manager.
2016-07-10 13:32:43 -04:00
188c118ba5
Switch to the new upload url for PyPI
2016-07-06 15:27:35 -04:00
035583b389
Issue #25940 : On Windows, connecting to port 444 returns ETIMEDOUT
2016-01-15 01:16:41 +00:00
3d81d93f34
Issue #25940 : Use self-signed.pythontest.net in SSL tests
...
This is instead of svn.python.org, whose certificate recently expired, and
whose new certificate uses a different root certificate.
The certificate used at the pythontest server was modifed to set the "basic
constraints" CA flag. This flag seems to be required for test_get_ca_certs_
capath() to work (in Python 3.4+).
Added the new self-signed certificate to capath with the following commands:
cp Lib/test/{selfsigned_pythontestdotnet.pem,capath/}
c_rehash -v Lib/test/capath/
c_rehash -v -old Lib/test/capath/
# Note the generated file names
cp Lib/test/capath/{selfsigned_pythontestdotnet.pem,0e4015b9.0}
mv Lib/test/capath/{selfsigned_pythontestdotnet.pem,ce7b8643.0}
The new server responds with "No route to host" when connecting to port 444.
2016-01-14 09:36:00 +00:00
31b9410654
Issue #25709 : Fixed problem with in-place string concatenation and utf-8 cache.
2015-12-03 01:02:03 +02:00
fab75d9bb9
Issue #25940 : Merge ETIMEDOUT fix from 3.2 into 3.3
2016-01-15 02:08:13 +00:00
73f55076f6
Issue #25940 : Merge self-signed.pythontest.net testing from 3.2 into 3.3
2016-01-14 12:21:02 +00:00
0e617e22f0
remove some copyright notices supserseded by the toplevel ones
2016-01-01 11:53:47 -06:00
f1dcdd9ac5
add 2015 and 2016
2016-01-01 11:53:14 -06:00
16b347b3de
reflow
2016-01-01 11:12:44 -06:00
75e3630c60
2016 will be another year of writing copyrighted code
2016-01-01 10:23:45 -06:00
14b2c82855
fix reordering
2015-12-05 00:27:11 -08:00
2deaea3119
merge 3.2
2015-12-05 00:21:12 -08:00
5e621176c4
add CVE and issue number
2015-12-05 00:17:57 -08:00
102764a1f6
Issue #25021 : Correctly make sure that product.__setstate__ does not access
...
invalid memory.
2015-09-12 15:20:54 +00:00
a82f77fb00
protect against mutation of the dict during insertion ( closes #24407 )
2015-07-04 19:55:16 -05:00
dac3ab84c7
add issue number
2015-06-27 14:25:50 -05:00
59b08c18a8
use safe allocation and reallocation macros
2015-06-27 13:41:33 -05:00
614bfcc953
Issue 24366: Indent code (thanks to li4ick for reporting).
2015-06-02 18:53:46 -04:00
86c3a3b0b7
merge 3.2
2015-05-25 21:24:26 -05:00
b03856ab66
keep distutils version in sync with python version automatically
2015-05-25 21:24:00 -05:00
d504f20e1c
merge 3.2 ( #22931 )
2015-05-23 10:38:48 -05:00
9bd476ea57
allow square brackets in cookie values ( closes #22931 )
2015-05-23 10:36:48 -05:00
deff2b76ec
be more robust against the filters list changing under us ( closes #24096 )
2015-05-03 11:23:37 -04:00
501182a47b
just sort the items tuple directly ( closes #24094 )
2015-05-02 22:28:04 -04:00
51454a62e2
merge 3.2 ( #24044 )
2015-04-23 17:05:07 -04:00
0823ffb2fb
properly handle malloc failure ( closes #24044 )
...
Patch by Christian Heimes.
2015-04-23 17:04:36 -04:00
418fd74f87
Issue #23998 : PyImport_ReInitLock() now checks for lock allocation error
2015-04-19 21:08:42 +02:00
e5a853c390
use PyMem_NEW to detect overflow ( closes #23362 )
2015-03-02 13:23:25 -05:00
b779bfba45
fix possible overflow bugs in unicodedata ( closes #23367 )
2015-03-02 11:17:05 -05:00
03f8612562
merge 3.2
2015-02-18 08:54:22 -05:00
893cce921c
remove RPM, since it's unused and unmaintained
2015-02-18 08:52:46 -05:00
8ce6806498
add overflow checking ( closes #23361 )
2015-02-09 20:58:12 -05:00
dee948b359
Issues #23363 , #23364 , #23365 , #23366 : Fixed itertools overflow tests.
...
Used PyMem_New to check overflow.
2015-02-03 01:34:09 +02:00
1572944499
reduce memory usage of test ( closes #23369 )
2015-02-02 17:47:07 -05:00
0eaabf1c05
check for overflows in permutations() and product() ( closes #23363 , closes #23364 )
2015-02-01 21:34:07 -05:00
6f082297b2
check for overflow in combinations_with_replacement ( closes #23365 )
2015-02-01 21:10:47 -05:00
4b40eeb339
detect overflow in combinations ( closes #23366 )
2015-02-01 20:59:00 -05:00
Berker Peksag
Benjamin Peterson
Vinay Sajip
Donald Stufft
Senthil Kumaran
Martin Panter
R David Murray
Serhiy Storchaka
Martin Panter
Kristján Valur Jónsson
Yury Selivanov
Christian Heimes