git.ipfire.org Git - thirdparty/Python/cpython.git/commit

]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit

projects / thirdparty / Python / cpython.git / commit

author	Senthil Kumaran <senthil@uthcode.com>
	Sun, 31 Jul 2016 06:51:13 +0000 (23:51 -0700)
committer	Senthil Kumaran <senthil@uthcode.com>
	Sun, 31 Jul 2016 06:51:13 +0000 (23:51 -0700)
commit	cde03fa0381fcb7f7d3ba0dff4e784eade1f3031
tree	e5958851d32ee2b1d8296c33324fd80d6177e8df	tree \| snapshot
parent	bf5868d2c5a9bc742b69172820a34ea88bfe2591	commit \| diff
parent	7bfbd1d3c56b2a5281edeb7a8e21598618b7c1a3	commit \| diff

[merge from 3.5] - Prevent HTTPoxy attack (CVE-2016-1000110)

Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which
indicates that the script is in CGI mode.

Issue #27568 Reported and patch contributed by Rémi Rampin.

Lib/urllib/request.py	diff1 \|	diff2 \|	blob \| history
Misc/ACKS	diff1 \|	diff2 \|	blob \| history
Misc/NEWS	diff1 \|	diff2 \|	blob \| history

Mirror of https://github.com/python/cpython.git

RSS Atom

Lib/urllib/request.py	diff1 \|	diff2 \|	blob \| history
Misc/ACKS	diff1 \|	diff2 \|	blob \| history
Misc/NEWS	diff1 \|	diff2 \|	blob \| history