SlackBuilds Repository

14.2 > Python > defusedxml (0.5.0)

The results of an attack on a vulnerable XML library can be fairly dramatic.
With just a few hundred Bytes of XML data an attacker can occupy several
Gigabytes of memory within seconds. An attacker can also keep CPUs busy for a
long time with a small to medium size request. Under some circumstances it is
even possible to access local files on your server, to circumvent a firewall,
or to abuse services to rebound attacks to third parties. This library allows
for XML to be parsed in a manner that avoids these pitfalls.

Maintained by: Markus Rinne
Keywords: xml,bomb,protection,stdlib
ChangeLog: defusedxml


Source Downloads:
defusedxml-0.5.0.tar.gz (3aa135375954a9705633aad3d5abfeda)

Download SlackBuild:
defusedxml.tar.gz.asc (FAQ)

(the SlackBuild does not include the source)

Individual Files:

Validated for Slackware 14.2

See our HOWTO for instructions on how to use the contents of this repository.

Access to the repository is available via:
ftp git cgit http rsync

© 2006-2018 Project. All rights reserved.
Slackware® is a registered trademark of Patrick Volkerding
Linux® is a registered trademark of Linus Torvalds
Web Design by WebSight Designs |  Managed Hosting by OnyxLight Communications