Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

gh-115399: Document CVE-2023-52425 under "XML vulnerabilities"#115400

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Conversation

hartwork
Copy link
Contributor

@hartworkhartwork commentedFeb 13, 2024
edited by bedevere-appbot
Loading

Loosely related to#115399

A dedicated issue didn't seem needed here, but I can create one, if you consider it needed.

📚 Documentation preview 📚:https://cpython-previews--115400.org.readthedocs.build/

@bedevere-appbedevere-appbot added awaiting review docsDocumentation in the Doc dir labelsFeb 13, 2024
@hartworkhartwork mentioned this pull requestFeb 14, 2024
28 tasks
@sethmlarson
Copy link
Contributor

@hartwork Looks like CI is failing, the news fragment name appears to not be the correct format?

@ambv I'm not sure if docs changes like this get backported to security-only branches?

@hartwork
Copy link
ContributorAuthor

hartwork commentedFeb 14, 2024
edited
Loading

@hartwork Looks like CI is failing, the news fragment name appears to not be the correct format?

@sethmlarson yes, I I wish I knew what the correct file naming is for when there is no GitHub issue, that case seems to be undocumented or hard to find. Any ideas how to rename the file or where to find the related blurp docs? Googling for e.g. "blurp without github issue" doesn't get me anyhere.

@ambv I'm not sure if docs changes like this get backported to security-only branches?

If I may add: this docs extensionis security related. Please take my vote for backporting to security-only branches (unless I am missing good reasons not to). If it ends up producing merge conflicts, I can see if I can help with resolving them if reasonably economic. Thanks!

@sethmlarson
Copy link
Contributor

@hartwork The tool is "blurb" I think, also you can use#115399 for the GitHub issue.

@hartwork
Copy link
ContributorAuthor

you can use#115399 for the GitHub issue.

@sethmlarson good idea, give me a second…

@hartworkhartworkforce-pushed thedocument-cve-2023-52425-under-xml-vulnerabilities branch from0b5365b to3021d11CompareFebruary 14, 2024 19:17
@hartworkhartwork changed the titleDoc/library/xml.rst: Document CVE-2023-52425 under "XML vulnerabilities"gh-115399: Document CVE-2023-52425 under "XML vulnerabilities"Feb 14, 2024
@ambvambv merged commitfbd40ce intopython:mainFeb 21, 2024
@miss-islington-app
Copy link

Thanks@hartwork for the PR, and@ambv for merging it 🌮🎉.. I'm working now to backport this PR to: 3.8, 3.9, 3.10, 3.11, 3.12.
🐍🍒⛏🤖

miss-islington pushed a commit to miss-islington/cpython that referenced this pull requestFeb 21, 2024
…ythonGH-115400)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
@bedevere-app
Copy link

GH-115760 is a backport of this pull request to the3.12 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.12only security fixes labelFeb 21, 2024
miss-islington pushed a commit to miss-islington/cpython that referenced this pull requestFeb 21, 2024
…ythonGH-115400)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
@bedevere-app
Copy link

GH-115761 is a backport of this pull request to the3.11 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.11only security fixes labelFeb 21, 2024
miss-islington pushed a commit to miss-islington/cpython that referenced this pull requestFeb 21, 2024
…ythonGH-115400)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
@bedevere-app
Copy link

GH-115762 is a backport of this pull request to the3.10 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.10only security fixes labelFeb 21, 2024
miss-islington pushed a commit to miss-islington/cpython that referenced this pull requestFeb 21, 2024
…ythonGH-115400)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
@bedevere-app
Copy link

GH-115763 is a backport of this pull request to the3.9 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.9only security fixes labelFeb 21, 2024
miss-islington pushed a commit to miss-islington/cpython that referenced this pull requestFeb 21, 2024
…ythonGH-115400)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
@bedevere-app
Copy link

GH-115764 is a backport of this pull request to the3.8 branch.

ambv pushed a commit that referenced this pull requestFeb 21, 2024
…GH-115400) (GH-115760)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
ambv pushed a commit that referenced this pull requestFeb 21, 2024
…GH-115400) (GH-115761)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
ambv pushed a commit that referenced this pull requestFeb 21, 2024
…GH-115400) (GH-115762)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
ambv pushed a commit that referenced this pull requestFeb 21, 2024
…H-115400) (GH-115764)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
ambv pushed a commit that referenced this pull requestFeb 21, 2024
…H-115400) (GH-115763)Doc/library/xml.rst: DocumentCVE-2023-52425 under "XML vulnerabilities"(cherry picked from commitfbd40ce)Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
woodruffw pushed a commit to woodruffw-forks/cpython that referenced this pull requestMar 4, 2024
diegorusso pushed a commit to diegorusso/cpython that referenced this pull requestApr 17, 2024
LukasWoodtli pushed a commit to LukasWoodtli/cpython that referenced this pull requestJan 22, 2025
Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
docsDocumentation in the Doc dir
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

3 participants
@hartwork@sethmlarson@ambv
[8]ページ先頭
©2009-2025 Movatter.jp