2019-05-21-23-20-18.bpo-35907.NC_zNK.rst\Security\next\NEWS.d\Misc - delta/cpython-git.git - github.com: python/cpython.git

index : delta/cpython-git.git

github.com: python/cpython.git

summary refs log tree commit diff

path: root/Misc/NEWS.d/next/Security/2019-05-21-23-20-18.bpo-35907.NC_zNK.rst

blob: 37b567a5b6f93b19eccccada020d002c96f642fe (plain)

1
2
3

CVE-2019-9948: Avoid file reading by disallowing ``local-file://`` and
``local_file://`` URL schemes in ``URLopener().open()`` and
``URLopener().retrieve()`` of :mod:`urllib.request`.