Extension Modules
-----------------
-- Issue #12221: Replace pyexpat.__version__ with the Python version.
+- Issue #14212: The re module didn't retain a reference to buffers it was
+ scanning, resulting in segfaults.
+
+
++What's New in Python 3.2.3 release candidate 2?
++===============================================
++
++*Release date: XX-Mar-2012*
++
++Library
++-------
++
++- Issue #14234: CVE-2012-0876: Randomize hashes of xml attributes in the hash
++ table internal to the pyexpat module's copy of the expat library to avoid a
++ denial of service due to hash collisions. Patch by David Malcolm with some
++ modifications by the expat project.
+
-What's New in Python 3.1.4 release candidate 1?
+What's New in Python 3.2.3 release candidate 1?
===============================================
- *Release date: 24-Feb-2011*
-*Release date: 2011-05-29*
++*Release date: 24-Feb-2012*
Core and Builtins
-----------------
else {
self->itself = XML_ParserCreate(encoding);
}
+ XML_SetHashSalt(self->itself,
+ (unsigned long)_Py_HashSecret.prefix);
self->intern = intern;
Py_XINCREF(self->intern);
-#ifdef Py_TPFLAGS_HAVE_GC
PyObject_GC_Track(self);
-#else
- PyObject_GC_Init(self);
-#endif
if (self->itself == NULL) {
PyErr_SetString(PyExc_RuntimeError,
"XML_ParserCreate failed");
projects / thirdparty / Python / cpython.git / commitdiff
