traverseda
/
cpython
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
cpython/Misc/NEWS.d/next/Security/2018-03-02-10-24-52.bpo-329...

5 lines
224 B
ReStructuredText
Raw Blame History

Regexes in difflib and poplib were vulnerable to catastrophic backtracking.
These regexes formed potential DOS vectors (REDOS). They have been
refactored. This resolves CVE-2018-1060 and CVE-2018-1061.
Patch by Jamie Davis.
Reference in New Issue View Git Blame Copy Permalink