Revisions of python310
buildservice-autocommit
accepted
request 1161074
from
Matej Cepl (mcepl)
(revision 126)
Matej Cepl (mcepl)
(revision 126)
baserev update by copy to link target
Matej Cepl (mcepl)
committed
(revision 125)
- Add old-libexpat.patch making the test suite work with libexpat < 2.6.0 (gh#python/cpython#117187).
Matej Cepl (mcepl)
committed
(revision 124)
- Because of bsc#1189495 we have to revert use of %autopatch.
Matej Cepl (mcepl)
committed
(revision 119)
- Update 3.10.14:
- gh-115399 & gh-115398: bundled libexpat was updated to 2.6.0
to address CVE-2023-52425, and control of the new reparse
deferral functionality was exposed with new APIs
- gh-109858: zipfile is now protected from the “quoted-overlap”
zipbomb to address CVE-2024-0450. It now raises BadZipFile
when attempting to read an entry that overlaps with another
entry or central directory
- gh-91133: tempfile.TemporaryDirectory cleanup no longer
dereferences symlinks when working around file system
permission errors to address CVE-2023-6597
- gh-115197: urllib.request no longer resolves the hostname
before checking it against the system’s proxy bypass list on
macOS and Windows
- gh-81194: a crash in socket.if_indextoname() with a specific
value (UINT_MAX) was fixed. Relatedly, an integer overflow in
socket.if_indextoname() on 64-bit non-Windows platforms was
fixed
- gh-113659: .pth files with names starting with a dot or
containing the hidden file attribute are now skipped
- gh-102388: iso2022_jp_3 and iso2022_jp_2004 codecs no longer
read out of bounds
- gh-114572: ssl.SSLContext.cert_store_stats() and
ssl.SSLContext.get_ca_certs() now correctly lock access to
the certificate store, when the ssl.SSLContext is shared
across multiple threads
- Remove upstreamed patches:
- CVE-2023-6597-TempDir-cleaning-symlink.patch
- Port to %autosetup and %autopatch.
buildservice-autocommit
accepted
request 1157645
from
Factory Maintainer (factory-maintainer)
(revision 118)
Factory Maintainer (factory-maintainer)
(revision 118)
baserev update by copy to link target
Matej Cepl (mcepl)
accepted
request 1155683
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 117)
buildservice-autocommit
accepted
request 1153061
from
Matej Cepl (mcepl)
(revision 116)
Matej Cepl (mcepl)
(revision 116)
baserev update by copy to link target
Matej Cepl (mcepl)
committed
(revision 114)
- (bsc#1219666, CVE-2023-6597) Add CVE-2023-6597-TempDir-cleaning-symlink.patch (patch from gh#python/cpython!99930) fixing symlink bug in cleanup of tempfile.TemporaryDirectory.
buildservice-autocommit
accepted
request 1152786
from
Factory Maintainer (factory-maintainer)
(revision 113)
Factory Maintainer (factory-maintainer)
(revision 113)
baserev update by copy to link target
Matej Cepl (mcepl)
committed
(revision 112)
- Remove double definition of /usr/bin/idle%%{version} in
%%files.
buildservice-autocommit
accepted
request 1146869
from
Matej Cepl (mcepl)
(revision 111)
Matej Cepl (mcepl)
(revision 111)
baserev update by copy to link target
Matej Cepl (mcepl)
accepted
request 1146817
from
Daniel Garcia (dgarcia)
(revision 110)
- Add upstream patch libexpat260.patch, Fix tests for XMLPullParser with Expat 2.6.0, gh#python/cpython#115289
Matej Cepl (mcepl)
committed
(revision 109)
- Refresh CVE-2023-27043-email-parsing-errors.patch to gh#python/cpython!111116, fixing bsc#1210638 (CVE-2023-27043). - Thus we can remove Revert-gh105127-left-tests.patch, which is now useless.
buildservice-autocommit
accepted
request 1110597
from
Factory Maintainer (factory-maintainer)
(revision 108)
Factory Maintainer (factory-maintainer)
(revision 108)
baserev update by copy to link target
Displaying revisions 1 - 20 of 127
