Stowage/cpython
2
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2026-01-08 08:22:41 +00:00
Code Issues Projects Releases Packages Wiki Activity

gh-127502: Fix typo in XML security notes (#139335)

Browse source
This commit is contained in:
Sebastian Pipping 2025-09-26 11:59:08 +02:00 committed by GitHub
parent 7909b30493
commit 6fa1e552e0
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
Doc/library/xml.rst
View file

@ -55,7 +55,7 @@ An attacker can abuse XML features to carry out denial of service attacks,
access local files, generate network connections to other machines, or
circumvent firewalls.
Expat versions lower that 2.6.0 may be vulnerable to "billion laughs",
Expat versions lower than 2.6.0 may be vulnerable to "billion laughs",
"quadratic blowup" and "large tokens". Python may be vulnerable if it uses such
older versions of Expat as a system-provided library.
Check :const:`!pyexpat.EXPAT_VERSION`.