From f2086da471c51314812431ed01e18ec41dbd1414 Mon Sep 17 00:00:00 2001
From: panchengzhong <1144372483@qq.com>
Date: Sat, 24 Sep 2022 10:22:01 +0800
Subject: [PATCH] CVE-2021-3733

Signed-off-by: panchengzhong <1144372483@qq.com>
---
 Lib/urllib/request.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Lib/urllib/request.py b/Lib/urllib/request.py
index 57d9914..af3fb9c 100644
--- a/Lib/urllib/request.py
+++ b/Lib/urllib/request.py
@@ -943,7 +943,7 @@ class AbstractBasicAuthHandler:
     # (single quotes are a violation of the RFC, but appear in the wild)
     rx = re.compile('(?:^|,)'   # start of the string or ','
                     '[ \t]*'    # optional whitespaces
-                    '([^ \t]+)' # scheme like "Basic"
+                    '([^ \t,]+)' # scheme like "Basic"
                     '[ \t]+'    # mandatory whitespaces
                     # realm=xxx
                     # realm='xxx'
-- 
Gitee