[Security] Bump uap-core to 0.8.0 to avoid DoS

bcaller · mattrobenolt · commit 0970eacb5cf7 · 2020-02-26T16:04:32.000-08:00
A security advisory for uap-core was published at GHSA-cmcx-xhr8-3w9p Denial of Service in uap-core <=0.7.2 when processing crafted User-Agent strings This fixes the 4 regular expressions vulnerable to Regular Expression Denial of Service (REDoS).
diff --git a/ua_parser/user_agent_parser_test.py b/ua_parser/user_agent_parser_test.py
@@ -85,7 +85,7 @@ def testPGTSStrings(self):
     def testParseAll(self):
         user_agent_string = "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.4; fr; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5,gzip(gfe),gzip(gfe)"
         expected = {
-            "device": {"family": "Other", "brand": None, "model": None},
+            "device": {"family": "Mac", "brand": "Apple", "model": "Mac"},
             "os": {
                 "family": "Mac OS X",
                 "major": "10",
diff --git a/uap-core b/uap-core
@@ -1 +1 @@
-Subproject commit 9db18c34f47ee8a30fcd1615ffcbb3ba4e02f287
+Subproject commit ec8322ffe14f94d88131cec550705f392085a519
