Gitiles
Code Review
Sign In
gerrit-public.fairphone.software
/
platform
/
external
/
python
/
cpython3
/
c4e671eec20dfcb29b18596a89ef075f826c9f96
/
.
/
Misc
/
NEWS.d
/
next
/
Security
/
2019-04-10-08-53-30.bpo-36276.51E-DA.rst
blob: 4fed4d545040e9caf05b13bcd4c9c22c987649fb [
file
] [
log
] [
blame
]
Address
CVE
-
2019
-
9740
by
disallowing URL paths
with
embedded whitespace
or
control characters through
into
the underlying http client request
.
Such
potentially malicious header injection
URLs
now cause a
ValueError
to be raised
.