A RetroSearch Logo

Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Search Query:

Showing content from https://github.com/python/cpython/commit/f14015adf52014c2345522fe32d43f15f001c986 below:

[3.10] bpo-43882 - Mention urllib.parse changes in Whats new section.… · python/cpython@f14015a · GitHub

File tree Expand file treeCollapse file tree 1 file changed

+7

-0

lines changed

Filter options

Expand file treeCollapse file tree 1 file changed

+7

-0

lines changed Original file line number Diff line number Diff line change

@@ -1337,6 +1337,13 @@ functions internally. For more details, please see their respective

 1337 1337

documentation.

 1338 1338

(Contributed by Adam Goldschmidt, Senthil Kumaran and Ken Jin in :issue:`42967`.)

 1339 1339 1340 +

The presence of newline or tab characters in parts of a URL allows for some

 1341 +

forms of attacks. Following the WHATWG specification that updates :rfc:`3986`,

 1342 +

ASCII newline ``\n``, ``\r`` and tab ``\t`` characters are stripped from the

 1343 +

URL by the parser in :mod:`urllib.parse` preventing such attacks. The removal

 1344 +

characters are controlled by a new module level variable

 1345 +

``urllib.parse._UNSAFE_URL_BYTES_TO_REMOVE``. (See :issue:`43882`)

 1346 + 1340 1347

xml

 1341 1348

---

 1342 1349

You can’t perform that action at this time.

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4