Meitar Moscovitz added the comment:
A separate patch for Python 2.7+ that handles the issue described in the same
way as the 3.4+ patch.
--
Added file: http://bugs.python.org/file46498/python-2.7.13.patch
___
Python tracker
<http://bugs.python.
New submission from Meitar Moscovitz:
SUMMARY:
In the Python standard library, the BaseHTTPRequestHandler class’s
send_header() method[0] does not correctly construct HTTP/1.1 message headers
as described by Section 4.2 of RFC 2616[1] when it is given maliciously-crafted
input, leaving
