[issue42051] [security] Avoid plistlib XML vulnerabilities by rejecting entity directives

STINNER Victor added the comment: Thanks Ronald Oussoren for the fix. It's better to fix a vulnerability (denial of service in this case) rather than documenting it :-) -- ___ Python tracker

[issue42051] [security] Avoid plistlib XML vulnerabilities by rejecting entity directives

Change by Ned Deily : -- keywords: +security_issue resolution: -> fixed stage: patch review -> resolved status: open -> closed title: plistlib inherits XML vulnerabilities: we should document them -> [security] Avoid plistlib XML vulnerabilities by rejecting entity directives