projects / python3.9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7920b8e) | patch
gh-143919: Reject control characters in http cookies
authorSeth Michael Larson <seth@python.org>
Tue, 20 Jan 2026 21:23:42 +0000 (15:23 -0600)
committerArnaud Rebillout <arnaudr@debian.org>
Thu, 14 May 2026 03:00:00 +0000 (10:00 +0700)
commit8bbfad8b1caf461369a701a9d23a15b1c2b485a5
tree222a22487d7e888cd39c2522cf458d9617ca5f82tree | snapshot
parent7920b8e22dd248b39588eea675b50efbeee03ba2commit | diff
gh-143919: Reject control characters in http cookies

Co-authored-by: Bartosz SÅ‚awecki <bartosz@ilikepython.com>
Co-authored-by: sobolevn <mail@sobolevn.me>
Origin: upstream, https://github.com/python/cpython/commit/95746b3a13a985787ef53b977129041971ed7f70

Gbp-Pq: Name CVE-2026-0672.patch
Doc/library/http.cookies.rst diff | blob | history
Lib/http/cookies.py diff | blob | history
Lib/test/test_http_cookies.py diff | blob | history
Misc/NEWS.d/next/Security/2026-01-16-11-13-15.gh-issue-143919.kchwZV.rst [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.