This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author Jim.Jewett
Recipients Arfrever, Jim.Jewett, amaury.forgeotdarc, barry, benjamin.peterson, dmalcolm, georg.brandl, gregory.p.smith, pitrou, python-dev
Date 2012-03-15.20:50:27
SpamBayes Score 0.0813267
Marked as misclassified No
Message-id <>
Looking at, so long as XML_ATTR_INFO isn't defined at compile time, the changes are all considered bugfixes, and the XML_SetHashSalt is the only other changed API.

Is a potential Denial of Service really worse than a crash, such as these fixed bugs:
Date User Action Args
2012-03-15 20:50:28Jim.Jewettsetrecipients: + Jim.Jewett, barry, georg.brandl, gregory.p.smith, amaury.forgeotdarc, pitrou, benjamin.peterson, Arfrever, dmalcolm, python-dev
2012-03-15 20:50:28Jim.Jewettsetmessageid: <>
2012-03-15 20:50:27Jim.Jewettlinkissue14234 messages
2012-03-15 20:50:27Jim.Jewettcreate