Stowage/cpython
2
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2025-12-31 12:33:28 +00:00
Code Issues Projects Releases Packages Wiki Activity
cpython/Lib/http
History
Exact
Miss Islington (bot) 9303573c74
[3.13] gh-119452: Fix a potential virtual memory allocation denial of service in http.server (GH-142216) (#142296) 
[3.14] gh-119452: Fix a potential virtual memory allocation denial of service in http.server (GH-142216)

The CGI server on Windows could consume the amount of memory specified
in the Content-Length header of the request even if the client does not
send such much data. Now it reads the POST request body by chunks,
therefore the memory consumption is proportional to the amount of sent
data.
(cherry picked from commit 0e4f4f1a46)

Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
Co-authored-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
2025-12-05 15:37:09 +00:00
..
__init__.py [3.13] gh-129408: http: Fix typo 'RFF' to RFC' in docstring (GH-129411) (#129414) 2025-01-28 18:48:51 +00:00
client.py [3.13] gh-119451: Fix a potential denial of service in http.client (GH-119454) (#142139) 2025-12-05 16:21:57 +01:00
cookiejar.py [3.13] gh-130631: Make join_header_words() more similar to the original Perl version (GH-130632) (GH-132303) 2025-04-09 09:18:31 +00:00
cookies.py [3.13] gh-123401: Fix http.cookies module to support obsolete RFC 850 date format (GH-123405) (#127828) 2024-12-11 15:38:09 +00:00
server.py [3.13] gh-119452: Fix a potential virtual memory allocation denial of service in http.server (GH-142216) (#142296) 2025-12-05 15:37:09 +00:00