8000 Document new CVE-2023-52425 Expat API (reparse deferral) · python/cpython@439d970 · GitHub
[go: up one dir, main page]
Skip to content
Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Commit 439d970

Browse files
hartworkhartwork
committed
Document new CVE-2023-52425 Expat API (reparse deferral)
1 parent d66ade1 commit 439d970

File tree

1 file changed

+8
-0
lines changed

1 file changed

+8
-0
lines changed

Misc/NEWS.d/next/Security/2024-02-18-03-14-40.gh-issue-115398.tzvxH8.rst

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,8 @@
1+
Allow controlling Expat >=2.6.0 reparse deferral (CVE-2023-52425) by adding
2+
five new methods:
3+
4+
* ``pyexpat.xmlparser.GetReparseDeferralEnabled``
5+
* ``pyexpat.xmlparser.SetReparseDeferralEnabled``
6+
* ``xml.etree.ElementTree.XMLParser.flush``
7+
* ``xml.etree.ElementTree.XMLPullParser.flush``
8+
* ``xml.sax.expatreader.ExpatParser.flush``

0 commit comments

Comments
 (0)
0