Christian Heimes avatar Christian Heimes committed 6b7ff04

prepare release 0.4#

Comments (0)

Files changed (2)

 defusedxml 0.4
 --------------
 
-*Release date: ??-???-2013*
+*Release date: 25-Feb-2013*
 
 - As per http://seclists.org/oss-sec/2013/q1/340 please REJECT
   CVE-2013-0278, CVE-2013-0279 and CVE-2013-0280 and use CVE-2013-1664,
   CVE-2013-1665 for OpenStack/etc.
 - Add missing parser_list argument to sax.make_parser(). The argument is
   ignored, though. (thanks to Florian Apolloner)
-- Add demo exploit for external entity attack on Python's SAX parser.
+- Add demo exploit for external entity attack on Python's SAX parser, XML-RPC
+  and WebDAV.
 
 
 defusedxml 0.3

defusedxml/__init__.py

     return defused
 
 
-__version__ = "0.3"
+__version__ = "0.4"
 
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.