Update to 3.9.20
This commit is contained in:
Tomáš Hrnčiar
parent
1f0b956059
commit
994b826cd1
7 changed files with 7 additions and 1521 deletions
|
|
@ -13,11 +13,11 @@ URL: https://www.python.org/
|
|||
|
||||
# WARNING When rebasing to a new Python version,
|
||||
# remember to update the python3-docs package as well
|
||||
%global general_version %{pybasever}.19
|
||||
%global general_version %{pybasever}.20
|
||||
#global prerel ...
|
||||
%global upstream_version %{general_version}%{?prerel}
|
||||
Version: %{general_version}%{?prerel:~%{prerel}}
|
||||
Release: 6%{?dist}
|
||||
Release: 1%{?dist}
|
||||
License: Python
|
||||
|
||||
|
||||
|
|
@ -385,74 +385,6 @@ Patch371: 00371-revert-bpo-1596321-fix-threading-_shutdown-for-the-main-thread-g
|
|||
# gh-99086: Fix implicit int compiler warning in configure check for PTHREAD_SCOPE_SYSTEM
|
||||
Patch407: 00407-gh-99086-fix-implicit-int-compiler-warning-in-configure-check-for-pthread_scope_system.patch
|
||||
|
||||
# 00415 # 512c60eb23a8d7b26d74824a6d7bbefb6feefb65
|
||||
# [CVE-2023-27043] gh-102988: Reject malformed addresses in email.parseaddr() (#111116)
|
||||
#
|
||||
# Detect email address parsing errors and return empty tuple to
|
||||
# indicate the parsing error (old API). Add an optional 'strict'
|
||||
# parameter to getaddresses() and parseaddr() functions. Patch by
|
||||
# Thomas Dwyer.
|
||||
Patch415: 00415-cve-2023-27043-gh-102988-reject-malformed-addresses-in-email-parseaddr-111116.patch
|
||||
|
||||
# 00419 # f13682530cc7e4daec2e40acd56508846fdd3aad
|
||||
# gh-112769: test_zlib: Fix comparison of ZLIB_RUNTIME_VERSION with non-int suffix (GH-112771) (GH-112774)
|
||||
#
|
||||
# zlib-ng defines the version as "1.3.0.zlib-ng".
|
||||
Patch419: 00419-gh-112769-test_zlib-fix-comparison-of-zlib_runtime_version-with-non-int-suffix-gh-112771-gh-112774.patch
|
||||
|
||||
# 00431 # 1216ca6d2f3d6fc7ef7bf33b78b7a887be02e467
|
||||
# gh-113171: gh-65056: Fix "private" (non-global) IP address ranges (GH-113179) (GH-113186) (GH-118177) (GH-118472)
|
||||
#
|
||||
# The _private_networks variables, used by various is_private
|
||||
# implementations, were missing some ranges and at the same time had
|
||||
# overly strict ranges (where there are more specific ranges considered
|
||||
# globally reachable by the IANA registries).
|
||||
#
|
||||
# This patch updates the ranges with what was missing or otherwise
|
||||
# incorrect.
|
||||
#
|
||||
# 100.64.0.0/10 is left alone, for now, as it's been made special in [1].
|
||||
#
|
||||
# The _address_exclude_many() call returns 8 networks for IPv4, 121
|
||||
# networks for IPv6.
|
||||
#
|
||||
# [1] https://github.com/python/cpython/issues/61602
|
||||
#
|
||||
# In 3.10 and below, is_private checks whether the network and broadcast
|
||||
# address are both private.
|
||||
# In later versions (where the test wss backported from), it checks
|
||||
# whether they both are in the same private network.
|
||||
#
|
||||
# For 0.0.0.0/0, both 0.0.0.0 and 255.225.255.255 are private,
|
||||
# but one is in 0.0.0.0/8 ("This network") and the other in
|
||||
# 255.255.255.255/32 ("Limited broadcast").
|
||||
#
|
||||
# ---------
|
||||
Patch431: 00431-gh-113171-gh-65056-fix-private-non-global-ip-address-ranges-gh-113179-gh-113186-gh-118177-gh-118472.patch
|
||||
|
||||
# 00435 # f2924d30f4dd44804219c10410a57dd96764d297
|
||||
# gh-121650: Encode newlines in headers, and verify headers are sound (GH-122233)
|
||||
#
|
||||
# Per RFC 2047:
|
||||
#
|
||||
# > [...] these encoding schemes allow the
|
||||
# > encoding of arbitrary octet values, mail readers that implement this
|
||||
# > decoding should also ensure that display of the decoded data on the
|
||||
# > recipient's terminal will not cause unwanted side-effects
|
||||
#
|
||||
# It seems that the "quoted-word" scheme is a valid way to include
|
||||
# a newline character in a header value, just like we already allow
|
||||
# undecodable bytes or control characters.
|
||||
# They do need to be properly quoted when serialized to text, though.
|
||||
#
|
||||
# This should fail for custom fold() implementations that aren't careful
|
||||
# about newlines.
|
||||
Patch435: 00435-gh-121650-encode-newlines-in-headers-and-verify-headers-are-sound-gh-122233.patch
|
||||
|
||||
# 00436 # 506dd77b7132f69ada7185b8bb91eba0e1296aa8
|
||||
# [CVE-2024-8088] gh-122905: Sanitize names in zipfile.Path.
|
||||
Patch436: 00436-cve-2024-8088-gh-122905-sanitize-names-in-zipfile-path.patch
|
||||
|
||||
# (New patches go here ^^^)
|
||||
#
|
||||
# When adding new patches to "python" and "python3" in Fedora, EL, etc.,
|
||||
|
|
@ -1900,6 +1832,9 @@ CheckPython optimized
|
|||
# ======================================================
|
||||
|
||||
%changelog
|
||||
* Mon Sep 09 2024 Tomáš Hrnčiar <thrnciar@redhat.com> - 3.9.20-1
|
||||
- Update to 3.9.20
|
||||
|
||||
* Fri Aug 23 2024 Charalampos Stratakis <cstratak@redhat.com> - 3.9.19-6
|
||||
- Security fix for CVE-2024-8088
|
||||
- Fixes: rhbz#2307466
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue