| commit | 020d7c379afe7edc7b5437c29b434ecc059e6a76 | [log] [tgz] |
|---|---|---|
| author | R David Murray <rdmurray@bitdance.com> | Fri Jan 03 13:59:22 2014 -0500 |
| committer | R David Murray <rdmurray@bitdance.com> | Fri Jan 03 13:59:22 2014 -0500 |
| tree | eb76f786a8e021e37f41785c768bdc94b8c0e8a1 | |
| parent | 5851218e4228d36306b5a46387fc27daf48cf840 [diff] [blame] |
closes 16039: CVE-2013-1752: limit line length in imaplib readline calls.
diff --git a/Misc/NEWS b/Misc/NEWS index 7fff780..05c1467 100644 --- a/Misc/NEWS +++ b/Misc/NEWS
@@ -30,6 +30,9 @@ Library ------- +- Issue #16039: CVE-2013-1752: Change use of readline in imaplib module to + limit line length. Patch by Emil Lind. + - Issue #19422: Explicitly disallow non-SOCK_STREAM sockets in the ssl module, rather than silently let them emit clear text data.