Message 341932 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	cstratak
Recipients	cstratak, gregory.p.smith, martin.panter, miss-islington, orange, serhiy.storchaka, vstinner, ware, xiang.zhang, xtreak
Date	2019-05-08.19:25:57
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1557343557.41.0.119109141266.issue30458@roundup.psfhosted.org>
In-reply-to

Content
A small clarification on the differences of those two CVE's. CVE-2019-9740: CLRF sequences are not properly handled in python built-in modules urllib/urllib2 in the query part of the url parameter of urlopen() function CVE-2019-9947: CLRF sequences are not properly handled in python built-in modules urllib/urllib2 in the path part of the url parameter of urlopen() function

A small clarification on the differences of those two CVE's.

CVE-2019-9740: CLRF sequences are not properly handled in python built-in modules urllib/urllib2 in the query part of the url parameter of urlopen() function

CVE-2019-9947: CLRF sequences are not properly handled in python built-in modules urllib/urllib2 in the path part of the url parameter of urlopen() function

History
Date	User	Action	Args
2019-05-08 19:25:57	cstratak	set	recipients: + cstratak, gregory.p.smith, vstinner, martin.panter, serhiy.storchaka, xiang.zhang, orange, miss-islington, xtreak, ware
2019-05-08 19:25:57	cstratak	set	messageid: <1557343557.41.0.119109141266.issue30458@roundup.psfhosted.org>
2019-05-08 19:25:57	cstratak	link	issue30458 messages
2019-05-08 19:25:57	cstratak	create