projects / platform / upstream / python.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0178c4e) | patch
[CVE-2019-16935] bpo-38243: Escape the server title of DocXMLRPCServer (GH-16447) 08/215308/1 accepted/tizen/4.0/base/20191017.075527 submit/tizen_4.0_base/20191007.022237
authorDong-hee Na <donghee.na92@gmail.com>
Tue, 1 Oct 2019 10:58:01 +0000 (19:58 +0900)
committerDongHun Kwak <dh0128.kwak@samsung.com>
Mon, 7 Oct 2019 01:46:16 +0000 (10:46 +0900)
commit0b82cf28e7f33e7688b39a37d4a66e8056638288
tree465fe22e9f0f0cc54c537f49c32d20f989a79602tree | snapshot
parent0178c4eef80ce2bba3bcbf1bba5680b172cbc320commit | diff
[CVE-2019-16935] bpo-38243: Escape the server title of DocXMLRPCServer (GH-16447)

Escape the server title of DocXMLRPCServer.DocXMLRPCServer
when rendering the document page as HTML.

Change-Id: I1da852b38f533af77bcc064d4e48ecc0fd73d678
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
Lib/DocXMLRPCServer.py diff | blob | history
Lib/test/test_docxmlrpc.py diff | blob | history
Misc/NEWS.d/next/Security/2019-09-25-13-21-09.bpo-38243.1pfz24.rst [new file with mode: 0644] blob
Domain: System / Base;