]> granicus.if.org Git - python/commit
projects / python / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 382981b) | patch
[3.5] bpo-35121: prefix dot in domain for proper subdomain validation (GH-10258)...
authorXtreak <tir.karthi@gmail.com>
Sun, 17 Mar 2019 00:03:39 +0000 (05:33 +0530)
committerlarryhastings <larry@hastings.org>
Sun, 17 Mar 2019 00:03:39 +0000 (17:03 -0700)
commit4749f1b69000259e23b4cc6f63c542a9bdc62f1b
treeff9bbaea69dad10441b7c17a8b10e2d2a28d437ftree | snapshot
parent382981b25092b5e9285f1e4894142af1e8f2ca86commit | diff
[3.5] bpo-35121: prefix dot in domain for proper subdomain validation (GH-10258) (#12281)

Don't send cookies of domain A without Domain attribute to domain B when domain A is a suffix match of domain B while using a cookiejar with `http.cookiejar.DefaultCookiePolicy` policy.  Patch by Karthikeyan Singaravelan.
(cherry picked from commit ca7fe5063593958e5efdf90f068582837f07bd14)

Co-authored-by: Xtreak <tir.karthi@gmail.com>
Lib/http/cookiejar.py diff | blob | history
Lib/test/test_http_cookiejar.py diff | blob | history
Misc/NEWS.d/next/Security/2018-10-31-15-39-17.bpo-35121.EgHv9k.rst [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.