Skip to content

C
cpython
Kaydet (Commit) b8ec8a48 authored tarafından Matthias Klose's avatar Matthias Klose
Dosyalara gözat
Seçenekler

- expat: Fix DoS via malformed XML (CVE-2009-3720).

üst 166f8086
Hide whitespace changes
Inline Side-by-side
Showing with 3 additions and 2 deletions
Misc/NEWS
Dosyayı görüntüle @ b8ec8a48
...@@ -12,7 +12,8 @@ What's New in Python 2.5.5c2? ...@@ -12,7 +12,8 @@ What's New in Python 2.5.5c2?
Extension Modules Extension Modules
----------------- -----------------
- Fix DoS via XML document with malformed UTF-8 sequences (CVE_2009_3560). - expat: Fix DoS via XML document with malformed UTF-8 sequences (CVE_2009_3560).
- expat: Fix DoS via malformed XML (CVE-2009-3720).
What's New in Python 2.5.5c1? What's New in Python 2.5.5c1?
......
Modules/expat/xmltok_impl.c
Dosyayı görüntüle @ b8ec8a48
...@@ -1741,7 +1741,7 @@ PREFIX(updatePosition)(const ENCODING *enc, ...@@ -1741,7 +1741,7 @@ PREFIX(updatePosition)(const ENCODING *enc,
const char *end, const char *end,
POSITION *pos) POSITION *pos)
{ {
while (ptr != end) { while (ptr < end) {
switch (BYTE_TYPE(enc, ptr)) { switch (BYTE_TYPE(enc, ptr)) {
#define LEAD_CASE(n) \ #define LEAD_CASE(n) \
case BT_LEAD ## n: \ case BT_LEAD ## n: \
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment