Bénédikt Tran bf2865f80f [3.14] gh-90949: add Expat API to prevent XML deadly allocations (CVE-2025-59375) (GH-139234) (#139359) ... * [3.14] gh-90949: add Expat API to prevent XML deadly allocations (CVE-2025-59375) (GH-139234) Expose the XML Expat 2.7.2 mitigation APIs to disallow use of disproportional amounts of dynamic memory from within an Expat parser (see CVE-2025-59375 for instance). The exposed APIs are available on Expat parsers, that is, parsers created by `xml.parsers.expat.ParserCreate()`, as: - `parser.SetAllocTrackerActivationThreshold(threshold)`, and - `parser.SetAllocTrackerMaximumAmplification(max_factor)`. (cherry picked from commit f04bea44c3) (cherry picked from commit 68a1778b77)		2025-11-02 09:33:36 +00:00
..
ascii.h
asciitab.h
COPYING
expat.h	[3.14] gh-139312: Update bundled libexpat to 2.7.3 (GH-139319) (#139376)	2025-09-27 08:10:07 +02:00
expat_config.h
expat_external.h	[3.14] gh-138998: Upgrade vendored expat to 2.7.2 (GH-138999) (#139024)	2025-09-17 15:41:02 +03:00
iasciitab.h
internal.h	[3.14] gh-139312: Update bundled libexpat to 2.7.3 (GH-139319) (#139376)	2025-09-27 08:10:07 +02:00
latin1tab.h
nametab.h
pyexpatns.h	[3.14] gh-90949: add Expat API to prevent XML deadly allocations (CVE-2025-59375) (GH-139234) (#139359)	2025-11-02 09:33:36 +00:00
refresh.sh	[3.14] gh-139312: Update bundled libexpat to 2.7.3 (GH-139319) (#139376)	2025-09-27 08:10:07 +02:00
siphash.h	gh-123678: Upgrade libexpat 2.6.3 (#123689)	2024-09-04 12:57:16 -07:00
utf8tab.h
winconfig.h
xmlparse.c	[3.14] gh-139312: Update bundled libexpat to 2.7.3 (GH-139319) (#139376)	2025-09-27 08:10:07 +02:00
xmlrole.c
xmlrole.h	[3.14] gh-139312: Update bundled libexpat to 2.7.3 (GH-139319) (#139376)	2025-09-27 08:10:07 +02:00
xmltok.c	[3.14] gh-138998: Upgrade vendored expat to 2.7.2 (GH-138999) (#139024)	2025-09-17 15:41:02 +03:00
xmltok.h	[3.14] gh-138998: Upgrade vendored expat to 2.7.2 (GH-138999) (#139024)	2025-09-17 15:41:02 +03:00
xmltok_impl.c
xmltok_impl.h
xmltok_ns.c