Fedora EPEL 6 Update: python-defusedxml-0.4-1.el6
updates at fedoraproject.org
updates at fedoraproject.org
Sat Apr 13 00:13:15 UTC 2013
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2013-0817
2013-03-28 16:25:22
--------------------------------------------------------------------------------
Name : python-defusedxml
Product : Fedora EPEL 6
Version : 0.4
Release : 1.el6
URL : https://bitbucket.org/tiran/defusedxml
Summary : XML bomb protection for Python stdlib modules
Description :
The defusedxml package contains several Python-only workarounds and fixes for
denial of service and other vulnerabilities in Python's XML libraries. In order
to benefit from the protection you just have to import and use the listed
functions / classes from the right defusedxml module instead of the original
module.
--------------------------------------------------------------------------------
Update Information:
XML bomb protection for Python stdlib modules
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #927883 - Review Request: python-defusedxml - XML bomb protection for Python stdlib modules
https://bugzilla.redhat.com/show_bug.cgi?id=927883
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update python-defusedxml' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the epel-package-announce
mailing list