Source

defusedxml / CHANGES.txt

Diff from to

File CHANGES.txt

 defusedxml 0.4
 --------------
 
-*Release date: ??-???-2013*
+*Release date: 25-Feb-2013*
 
 - As per http://seclists.org/oss-sec/2013/q1/340 please REJECT
   CVE-2013-0278, CVE-2013-0279 and CVE-2013-0280 and use CVE-2013-1664,
   CVE-2013-1665 for OpenStack/etc.
 - Add missing parser_list argument to sax.make_parser(). The argument is
   ignored, though. (thanks to Florian Apolloner)
-- Add demo exploit for external entity attack on Python's SAX parser.
+- Add demo exploit for external entity attack on Python's SAX parser, XML-RPC
+  and WebDAV.
 
 
 defusedxml 0.3