mirror of
https://github.com/python/cpython.git
synced 2025-12-31 04:23:37 +00:00
8ea678d6d1
* gh-139400: Make sure that parent parsers outlive their subparsers in `pyexpat` (#139403)
* Modules/pyexpat.c: Disallow collection of in-use parent parsers.
Within libexpat, a parser created via `XML_ExternalEntityParserCreate`
is relying on its parent parser throughout its entire lifetime.
Prior to this fix, is was possible for the parent parser to be
garbage-collected too early.
(cherry picked from commit 6edb2ddb5f)
* Move news item to from section "Core and Builtins" to section "Security"
4 lines
242 B
ReStructuredText
4 lines
242 B
ReStructuredText
:mod:`xml.parsers.expat`: Make sure that parent Expat parsers are only
|
|
garbage-collected once they are no longer referenced by subparsers created
|
|
by :meth:`~xml.parsers.expat.xmlparser.ExternalEntityParserCreate`.
|
|
Patch by Sebastian Pipping.
|