Google Git
Sign in
chromium / external / github.com / python / cpython / 910886a6448e4bf1edf49eeace4aa240b6403772
commit910886a6448e4bf1edf49eeace4aa240b6403772[log] [tgz]
authorNed Deily <nad@python.org>Tue Aug 31 06:35:31 2021
committerGitHub <noreply@github.com>Tue Aug 31 06:35:31 2021
treef3907be2308011c3a9964bfc0c13ae8a5f4fe4eb
parent8934bb0c3179e4c020cd6f08dea64bccbf56ffa2 [diff]
[3.6] bpo-44394: Update libexpat copy to 2.4.1 (GH-26945) (GH-28042) (GH-28080)

Update the vendored copy of libexpat to 2.4.1 (from 2.2.8) to get the
fix for the CVE-2013-0340 "Billion Laughs" vulnerability. This copy
is most used on Windows and macOS.

Co-authored-by: Victor Stinner <vstinner@python.org>

Co-authored-by: Ɓukasz Langa <lukasz@langa.pl>.
(cherry picked from commit 3fc5d84046ddbd66abac5b598956ea34605a4e5d)
23 files changed
tree: f3907be2308011c3a9964bfc0c13ae8a5f4fe4eb
  1. .azure-pipelines/
  2. .github/
  3. Doc/
  4. Grammar/
  5. Include/
  6. Lib/
  7. Mac/
  8. Misc/
  9. Modules/
  10. Objects/
  11. Parser/
  12. PC/
  13. PCbuild/
  14. Programs/
  15. Python/
  16. Tools/
  17. .bzrignore
  18. .gitattributes
  19. .gitignore
  20. .hgignore
  21. .travis.yml
  22. aclocal.m4
  23. config.guess
  24. config.sub
  25. configure
  26. configure.ac
  27. install-sh
  28. LICENSE
  29. Makefile.pre.in
  30. pyconfig.h.in
  31. README.rst
  32. setup.py