| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Added tag v0.4.1 for changeset f6b0e619a6c8HEADmaster | Christian Heimes | 2013-03-28 | 0 | -0/+0 |
| | | |||||
| * | Prepare release 0.4.1v0.4.1 | Christian Heimes | 2013-03-28 | 3 | -6/+9 |
| | | |||||
| * | verify xmlrpc behavior | Christian Heimes | 2013-03-26 | 1 | -1/+13 |
| | | |||||
| * | xmlrpc doesn't do external retrieval | Christian Heimes | 2013-03-25 | 1 | -3/+3 |
| | | |||||
| * | add possible issue with XMLSchema location | Christian Heimes | 2013-03-07 | 1 | -1/+15 |
| | | | | | fixed XSLT bug | ||||
| * | add two working xalan exploits | Christian Heimes | 2013-03-07 | 2 | -0/+38 |
| | | |||||
| * | back to dev | Christian Heimes | 2013-02-25 | 2 | -1/+7 |
| | | |||||
| * | Added tag v0.4 for changeset 6b7ff04c3704 | Christian Heimes | 2013-02-25 | 0 | -0/+0 |
| | | |||||
| * | prepare release 0.4#v0.4 | Christian Heimes | 2013-02-25 | 2 | -3/+4 |
| | | |||||
| * | Add links to PyPI | Christian Heimes | 2013-02-25 | 1 | -3/+7 |
| | | | | | fixed grammar (thx Terry) | ||||
| * | rename python files | Christian Heimes | 2013-02-25 | 2 | -0/+2 |
| | | |||||
| * | PHP's libxml_disable_entity_loader() prevents entity expansion | Christian Heimes | 2013-02-25 | 1 | -0/+3 |
| | | |||||
| * | add demo exploits for webdav and xmlrpc | Christian Heimes | 2013-02-25 | 2 | -0/+84 |
| | | |||||
| * | note about demo exploit | Christian Heimes | 2013-02-21 | 1 | -1/+1 |
| | | |||||
| * | Add demo exploit for external entity expansion | Christian Heimes | 2013-02-21 | 1 | -0/+58 |
| | | |||||
| * | merge | Christian Heimes | 2013-02-20 | 1 | -2/+2 |
| |\ | |||||
| | * | fix typos | Fred Drake | 2013-02-19 | 1 | -2/+2 |
| | | | |||||
| * | | Add missing parser_list argument to sax.make_parser() | Christian Heimes | 2013-02-20 | 2 | -1/+4 |
| |/ | | | | The argument is ignored, though. (thanks to Florian Apolloner) | ||||
| * | Add infos from Kurt Seifried | Christian Heimes | 2013-02-19 | 1 | -0/+10 |
| | | |||||
| * | openstack is going to use Python's CVE numbers | Christian Heimes | 2013-02-19 | 1 | -15/+0 |
| | | |||||
| * | Added tag v0.3 for changeset 2127a9d13d97 | Christian Heimes | 2013-02-19 | 0 | -0/+0 |
| | | |||||
| * | preparing release 0.3v0.3 | Christian Heimes | 2013-02-19 | 1 | -1/+1 |
| | | |||||
| * | preparing release 0.3 | Christian Heimes | 2013-02-19 | 1 | -1/+3 |
| | | |||||
| * | point to my repos | Christian Heimes | 2013-02-19 | 1 | -1/+2 |
| | | |||||
| * | spelling | Christian Heimes | 2013-02-19 | 1 | -1/+1 |
| | | |||||
| * | document new expat features | Christian Heimes | 2013-02-18 | 1 | -2/+79 |
| | | |||||
| * | document features in stdlib | Christian Heimes | 2013-02-17 | 1 | -3/+52 |
| | | | | | how to protect .NET and Java | ||||
| * | more documentation and references | Christian Heimes | 2013-02-17 | 1 | -53/+102 |
| | | |||||
| * | test monkey patching a bit | Christian Heimes | 2013-02-17 | 1 | -0/+4 |
| | | |||||
| * | Add experimental monkey patching | Christian Heimes | 2013-02-17 | 2 | -21/+39 |
| | | |||||
| * | bigger caption | Christian Heimes | 2013-02-17 | 1 | -0/+6 |
| | | |||||
| * | post release changes | Christian Heimes | 2013-02-15 | 2 | -1/+7 |
| | | |||||
| * | Added tag v0.2 for changeset ea62aa5e5c3f | Christian Heimes | 2013-02-15 | 0 | -0/+0 |
| | | |||||
| * | prepare release 0.2v0.2 | Christian Heimes | 2013-02-15 | 2 | -2/+2 |
| | | |||||
| * | add version from defusedxml and use it in setup.py | Christian Heimes | 2013-02-15 | 2 | -1/+6 |
| | | |||||
| * | other things list is pessimistic | Christian Heimes | 2013-02-15 | 1 | -4/+6 |
| | | |||||
| * | document lxml and xmlrpc modules | Christian Heimes | 2013-02-15 | 1 | -5/+18 |
| | | |||||
| * | underline h1 | Christian Heimes | 2013-02-15 | 2 | -1/+6 |
| | | |||||
| * | document no decompression bomb protection in lxml | Christian Heimes | 2013-02-15 | 1 | -3/+2 |
| | | |||||
| * | document -1 | Christian Heimes | 2013-02-15 | 1 | -0/+1 |
| | | |||||
| * | test for monkey patching | Christian Heimes | 2013-02-15 | 1 | -0/+6 |
| | | |||||
| * | test another special case | Christian Heimes | 2013-02-15 | 1 | -2/+6 |
| | | |||||
| * | Add protection against XML and gzip attacks to xmlrpclib | Christian Heimes | 2013-02-15 | 3 | -14/+206 |
| | | |||||
| * | tests for iterparse | Christian Heimes | 2013-02-15 | 1 | -11/+26 |
| | | |||||
| * | add module for xmlrpc patch | Christian Heimes | 2013-02-15 | 1 | -0/+21 |
| | | |||||
| * | Document forbid_external | Christian Heimes | 2013-02-15 | 1 | -6/+12 |
| | | |||||
| * | Fix for iterparse patch for Python 2.7 | Christian Heimes | 2013-02-15 | 1 | -2/+5 |
| | | |||||
| * | don't load all modules right away | Christian Heimes | 2013-02-15 | 1 | -8/+8 |
| | | |||||
| * | hack to get bound methods of patched iterparse right | Christian Heimes | 2013-02-15 | 1 | -11/+21 |
| | | |||||
| * | xmlrpclib's ExpatParser needs protection, too | Christian Heimes | 2013-02-15 | 3 | -26/+78 |
| | | |||||
 |
index : delta/python-packages/defusedxml.git | |
| bitbucket.org: Obsolete (use python-packages/defusedxml-git) |
| summaryrefslogtreecommitdiff |