Skip to content

bpo-41712 Vulnerable Regex Changed #23191

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 10 commits into from
Closed

bpo-41712 Vulnerable Regex Changed #23191

wants to merge 10 commits into from

Conversation

Pixmew
Copy link
Contributor

@Pixmew Pixmew commented Nov 7, 2020
edited by bedevere-bot
Loading

The regex is changed because /w contains extra special characters which maybe invalid hence is converted to [A-Za-z_].

https://bugs.python.org/issue41712

Pixmew and others added 10 commits November 5, 2020 20:41
@Pixmew
Unnessery regex conditions are removed
eac3276 
bpo-41712: Removal of Unnessery regex conditions  
Using suggestion 
For example, you can modify the sub-pattern \w+\d+ to ([A-Za-z_]*\d)+
which should Fix the issue of vulnerable regex.
Test Result : Working as intended

Sorry if this not much this is my first pr to big org.
@Pixmew
Vulnerable regex conditions are removed
f3f4725 
bpo-41712: Removal of Vulnerable regex conditions  
Using suggestion  ""For example, you can modify the sub-pattern \w+\d+ to ([A-Za-z_]*\d)+""  and converted to ([A-za-z_]+\d+)
which should Fix the issue of vulnerable regex.
Test Result : Working as intended

Sorry if this not much this is my first pr to big org.
@blurb-it
📜🤖 Added by blurb_it.
8e502ad
@Pixmew
edited
9a4c1a5
@Pixmew
edited for avoiding docs failure
fddf4f1
@blurb-it
📜🤖 Added by blurb_it.
d4004c6
@Pixmew
linux test failure reason
40b6373
@Pixmew @Fidget-Spinner
Update Misc/NEWS.d/next/Tools-Demos/2020-11-06-09-12-13.bpo-41712.WOE…
52f7af2 
…kdm.rst

Co-authored-by: kj <[email protected]>
@Pixmew @Fidget-Spinner
Update Tools/msi/purge.py
eb1500c 
Co-authored-by: kj <[email protected]>
@Pixmew
Updated news
aab27c2
@Pixmew Pixmew requested a review from a team as a code owner November 7, 2020 15:20
@Pixmew Pixmew mentioned this pull request Nov 7, 2020
Merged
@Pixmew Pixmew closed this Nov 7, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
awaiting review
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Pixmew @the-knights-who-say-ni @bedevere-bot