Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cpython3 / 17742f2d45c9dd7ca777e33601a26e80576fdbf6
commit17742f2d45c9dd7ca777e33601a26e80576fdbf6[log] [tgz]
authorSenthil Kumaran <senthil@uthcode.com>Sat Jul 30 23:39:06 2016 -0700
committerSenthil Kumaran <senthil@uthcode.com>Sat Jul 30 23:39:06 2016 -0700
treef83a9638dd08398dd1c93e4941a794a836b67f8c
parent3a32bdfaa7494bfc172b04bdb1c8159978af8d42 [diff]
parent436fe5a447abb69e5e5a4f453325c422af02dcaa [diff]
[merge from 3.4] - Prevent HTTPoxy attack (CVE-2016-1000110)

Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which
indicates that the script is in CGI mode.

Issue #27568 Reported and patch contributed by RĂ©mi Rampin.
tree: f83a9638dd08398dd1c93e4941a794a836b67f8c
  1. Doc/
  2. Grammar/
  3. Include/
  4. Lib/
  5. Mac/
  6. Misc/
  7. Modules/
  8. Objects/
  9. Parser/
  10. PC/
  11. PCbuild/
  12. Programs/
  13. Python/
  14. Tools/
  15. .bzrignore
  16. .gitignore
  17. .hgeol
  18. .hgignore
  19. .hgtags
  20. .hgtouch
  21. aclocal.m4
  22. config.guess
  23. config.sub
  24. configure
  25. configure.ac
  26. install-sh
  27. LICENSE
  28. Makefile.pre.in
  29. pyconfig.h.in
  30. README
  31. setup.py