Stowage/cpython
2
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2026-04-22 20:01:13 +00:00
Code Issues Projects Releases Packages Wiki Activity

[3.7] bpo-34623: Mention CVE-2018-14647 in news entry (GH-9482) (GH-9488)

Browse source 
https://bugs.python.org/issue34623
(cherry picked from commit 026337a710)


Co-authored-by: Christian Heimes <christian@python.org>


https://bugs.python.org/issue34623
This commit is contained in:
Miss Islington (bot) 2018-09-21 21:57:46 -07:00 committed by GitHub
parent e5fde1f992
commit 5c3d8b2efd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
Misc/NEWS.d/next/Security/2018-09-10-16-05-39.bpo-34623.Ua9jMv.rst
View file

@ -1,2 +1,2 @@
The C accelerated _elementtree module now initializes hash randomization
salt from _Py_HashSecret instead of libexpat's default CSPRNG.
CVE-2018-14647: The C accelerated _elementtree module now initializes hash
randomization salt from _Py_HashSecret instead of libexpat's default CSPRNG.