File tree Expand file tree Collapse file tree 2 files changed +14
-2
lines changed
Expand file tree Collapse file tree 2 files changed +14
-2
lines changed Original file line number Diff line number Diff line change @@ -3,6 +3,18 @@ hide: navigation
33toc_depth : 2
44---
55
6+ ## 0.40.0 (October 15, 2024)
7+
8+ This release fixes a Denial of service (DoS) via ` multipart/form-data ` requests.
9+
10+ You can view the full security advisory:
11+ [ GHSA-f96h -pmfr-66vw] ( https://github.com/encode/starlette/security/advisories/GHSA-f96h-pmfr-66vw )
12+
13+ #### Fixed
14+
15+ - Add ` max_part_size ` to ` MultiPartParser ` to limit the size of parts in ` multipart/form-data `
16+ requests [ fd038f3] ( https://github.com/encode/starlette/commit/fd038f3070c302bff17ef7d173dbb0b007617733 ) .
17+
618## 0.39.2 (September 29, 2024)
719
820#### Fixed
@@ -118,7 +130,7 @@ toc_depth: 2
118130
119131#### Fixed
120132
121- * Upgrade ` python-multipart ` to ` 0.0.7 ` [ 13e5c26] ( 13e5c26a27f4903924624736abd6131b2da80cc5 ) .
133+ * Upgrade ` python-multipart ` to ` 0.0.7 ` [ 13e5c26] ( http://github.com/encode/starlette/commit/ 13e5c26a27f4903924624736abd6131b2da80cc5) .
122134* Avoid duplicate charset on ` Content-Type ` [ #2443 ] ( https://github.com/encode/starlette/2443 ) .
123135
124136## 0.36.1 (January 23, 2024)
Original file line number Diff line number Diff line change 1- __version__ = "0.39.2 "
1+ __version__ = "0.40.0 "
You can’t perform that action at this time.
0 commit comments