This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author vstinner
Recipients vstinner
Date 2020-10-16.08:32:09
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
The XML documentation starts with a red warning:

"Warning: The XML modules are not secure against erroneous or maliciously constructed data. If you need to parse untrusted or unauthenticated data see the XML vulnerabilities and The defusedxml Package sections. "

I suggest to add the same warning to the plistlib library which uses the XML parser internally to handle XML files.
Date User Action Args
2020-10-16 08:32:10vstinnersetrecipients: + vstinner
2020-10-16 08:32:10vstinnersetmessageid: <>
2020-10-16 08:32:10vstinnerlinkissue42051 messages
2020-10-16 08:32:09vstinnercreate