Package: wnpp Severity: wishlist Owner: Luke Faraone <lfara...@debian.org>
* Package name : defusedxml Version : 0.4.1 Upstream Author : Christian Heimes <christ...@python.org> * URL : https://pypi.python.org/pypi/defusedxml * License : Python Programming Lang: Python Description : XML bomb protection for Python stdlib modules The results of an attack on a vulnerable XML library can be fairly dramatic. With just a few hundred bytes of XML data an attacker can occupy several gigabytes of memory within seconds. An attacker can also keep CPUs busy for a long time with a small to medium size request. This library allows for XML to be parsed in a manner that avoids these pitfalls. -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130418154619.27128.72164.report...@cobalt.mit.edu
