add CVE and issue number

This commit is contained in:
Benjamin Peterson 2015-12-05 00:17:57 -08:00
parent b03856ab66
commit 5e621176c4

View File

@ -99,8 +99,9 @@ Library
- Issue #21766: Prevent a security hole in CGIHTTPServer by URL unquoting paths
before checking for a CGI script at that path.
- Fix arbitrary memory access in JSONDecoder.raw_decode with a negative second
parameter. Bug reported by Guido Vranken.
- Issue #21529 (CVE-2014-4616): Fix arbitrary memory access in
JSONDecoder.raw_decode with a negative second parameter. Bug reported by Guido
Vranken.
- Issue #21082: In os.makedirs, do not set the process-wide umask. Note this
changes behavior of makedirs when exist_ok=True.