[issue30458] [CVE-2019-9740][CVE-2019-9947][security] CRLF Injection in httplib
STINNER Victor
report at bugs.python.org
Wed Apr 10 06:48:21 EDT 2019
STINNER Victor <vstinner at redhat.com> added the comment:
> Closed issues:
I forgot:
* 2017, bpo-30713: "Reject newline character (U+000A) in URLs in urllib.parse"
Rejected: the ftplib vulnerabilty has been fixed by bpo-30119
with commmit 8c2d4cf092c5f0335e7982392a33927579c4d512.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue30458>
_______________________________________
More information about the Python-bugs-list
mailing list