Issue 17538: Document XML vulnerabilties

commit: 23790b4be0b6d5af4f79c23fd99e03a1499a1bb5 [log] [tgz]
author: Christian Heimes <christian@cheimes.de> Tue Mar 26 17:53:05 2013 +0100
committer: Christian Heimes <christian@cheimes.de> Tue Mar 26 17:53:05 2013 +0100
tree: 69827d9b0b1d8f03541fa943517a8eb13d1b0d09
parent: 4b394db41f7d5347e4a4083305bfcda562bc38f8 [diff] [blame]
diff --git a/Doc/library/xml.dom.pulldom.rst b/Doc/library/xml.dom.pulldom.rst
index bad0daa..9032706 100644
--- a/Doc/library/xml.dom.pulldom.rst
+++ b/Doc/library/xml.dom.pulldom.rst

@@ -16,6 +16,13 @@
 Object Model representation of a document from SAX events.
 
 
+.. warning::
+
+   The :mod:`xml.dom.pulldom` module is not secure against
+   maliciously constructed data.  If you need to parse untrusted or
+   unauthenticated data see :ref:`xml-vulnerabilities`.
+
+
 .. class:: PullDOM([documentFactory])
 
    :class:`xml.sax.handler.ContentHandler` implementation that ...
commit	23790b4be0b6d5af4f79c23fd99e03a1499a1bb5	[log] [tgz]
author	Christian Heimes <christian@cheimes.de>	Tue Mar 26 17:53:05 2013 +0100
committer	Christian Heimes <christian@cheimes.de>	Tue Mar 26 17:53:05 2013 +0100
tree	69827d9b0b1d8f03541fa943517a8eb13d1b0d09
parent	4b394db41f7d5347e4a4083305bfcda562bc38f8 [diff] [blame]