Skip to content

[3.11] gh-115133: Fix tests for XMLPullParser with Expat 2.6.0 (GH-115164)#115289

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
serhiy-storchaka merged 1 commit into from
Feb 11, 2024
Merged

[3.11] gh-115133: Fix tests for XMLPullParser with Expat 2.6.0 (GH-115164) #115289

serhiy-storchaka merged 1 commit into from
Feb 11, 2024

Conversation

@miss-islington
Copy link
Contributor

@miss-islingtonmiss-islington commented Feb 11, 2024
edited by bedevere-app bot
Loading

Feeding the parser by too small chunks defers parsing to prevent
CVE-2023-52425. Future versions of Expat may be more reactive.
(cherry picked from commit 4a08e7b)

Co-authored-by: Serhiy Storchaka storchaka@gmail.com

@serhiy-storchaka@miss-islington
pythongh-115133: Fix tests for XMLPullParser with Expat 2.6.0 (python…
f2eebf3
…GH-115164) Feeding the parser by too small chunks defers parsing to prevent CVE-2023-52425. Future versions of Expat may be more reactive. (cherry picked from commit 4a08e7b) Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
This was referenced Feb 11, 2024
Merged
Closed
@bedevere-appbedevere-appbot added the tests Tests in the Lib/test dir label Feb 11, 2024
@serhiy-storchakaserhiy-storchaka enabled auto-merge (squash) February 11, 2024 10:09
@serhiy-storchakaserhiy-storchaka merged commit 3501eca into python:3.11Feb 11, 2024
bmwiedemann pushed a commit to bmwiedemann/openSUSE that referenced this pull request Feb 18, 2024
@bmwiedemann
Update python311 to version 3.11.8 / rev 29 via SR 1146838
56d47cc
https://build.opensuse.org/request/show/1146838 by user mcepl + anag+factory Forwarded request #1146787 from dgarcia - Add upstream patch libexpat260.patch, Fix tests for XMLPullParser with Expat 2.6.0, gh#python/cpython#115289
@miss-islingtonmiss-islington deleted the backport-4a08e7b-3.11 branch January 2, 2026 16:46
Sign up for freeto join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

testsTests in the Lib/test dir

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@miss-islington@serhiy-storchaka