git.ipfire.org Git - thirdparty/Python/cpython.git/commit

]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit

projects / thirdparty / Python / cpython.git / commit

author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
	Wed, 5 May 2021 23:14:28 +0000 (16:14 -0700)
committer	GitHub <noreply@github.com>
	Wed, 5 May 2021 23:14:28 +0000 (16:14 -0700)
commit	60ba0b68470a584103e28958d91e93a6db37ec92
tree	45a48643d20bec4f6c2eebc109bb273b1ca525a9	tree \| snapshot
parent	24f1d1a8a2c4aa58a606b4b6d5fa4305a3b91705	commit \| diff

bpo-44022: Fix http client infinite line reading (DoS) after a HTTP 100 Continue (GH-25916) (GH-25931)

Fixes http.client potential denial of service where it could get stuck reading lines from a malicious server after a 100 Continue response.

Co-authored-by: Gregory P. Smith <greg@krypto.org>
(cherry picked from commit 47895e31b6f626bc6ce47d175fe9d43c1098909d)

Co-authored-by: Gen Xu <xgbarry@gmail.com>

Lib/http/client.py		diff \| blob \| blame \| history
Lib/test/test_httplib.py		diff \| blob \| blame \| history
Misc/NEWS.d/next/Security/2021-05-05-17-37-04.bpo-44022.bS3XJ9.rst	[new file with mode: 0644]	blob

Mirror of https://github.com/python/cpython.git

RSS Atom