Security fix for CVE-2018-14647 (#1631822)
This commit is contained in:
Miro Hrončok
parent
1ae01aa3f6
commit
4aa52bbbf8
2 changed files with 96 additions and 1 deletions
|
|
@ -14,7 +14,7 @@ URL: https://www.python.org/
|
|||
# WARNING When rebasing to a new Python version,
|
||||
# remember to update the python3-docs package as well
|
||||
Version: %{pybasever}.6
|
||||
Release: 5%{?dist}
|
||||
Release: 6%{?dist}
|
||||
License: Python
|
||||
|
||||
|
||||
|
|
@ -352,6 +352,13 @@ Patch292: 00292-restore-PyExc_RecursionErrorInst-symbol.patch
|
|||
# See also: https://bugzilla.redhat.com/show_bug.cgi?id=1489816
|
||||
Patch294: 00294-define-TLS-cipher-suite-on-build-time.patch
|
||||
|
||||
# 00310 #
|
||||
# CVE-2018-14647
|
||||
# Use XML_SetHashSalt in _elementtree
|
||||
# rhbz#1631822
|
||||
# Fixed upstream https://bugs.python.org/issue34623
|
||||
Patch310: 00310-use-xml-sethashsalt-in-elementtree.patch
|
||||
|
||||
# (New patches go here ^^^)
|
||||
#
|
||||
# When adding new patches to "python" and "python3" in Fedora, EL, etc.,
|
||||
|
|
@ -677,6 +684,7 @@ rm Lib/ensurepip/_bundled/*.whl
|
|||
%patch274 -p1
|
||||
%patch292 -p1
|
||||
%patch294 -p1
|
||||
%patch310 -p1
|
||||
|
||||
|
||||
# Remove files that should be generated by the build
|
||||
|
|
@ -1558,6 +1566,9 @@ CheckPython optimized
|
|||
# ======================================================
|
||||
|
||||
%changelog
|
||||
* Mon Sep 24 2018 Miro Hrončok <mhroncok@redhat.com> - 3.6.6-6
|
||||
- Security fix for CVE-2018-14647 (#1631822)
|
||||
|
||||
* Fri Aug 17 2018 Miro Hrončok <mhroncok@redhat.com> - 3.6.6-5
|
||||
- Add /usr/bin/pygettext3.py and msgfmt3.py to python3-devel
|
||||
Resolves: rhbz#1571474
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue