Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python310 for openSUSE:Factory
checked in at 2022-09-17 20:08:07
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python310 (Old)
and /work/SRC/openSUSE:Factory/.python310.new.2083 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python310"
Sat Sep 17 20:08:07 2022 rev:21 rq:1002508 version:3.10.7
Changes:
--------
--- /work/SRC/openSUSE:Factory/python310/python310.changes 2022-09-01
22:11:08.364238957 +0200
+++ /work/SRC/openSUSE:Factory/.python310.new.2083/python310.changes
2022-09-17 20:08:09.652779702 +0200
@@ -1,0 +2,52 @@
+Sun Sep 11 08:32:53 UTC 2022 - Matej Cepl <mc...@suse.com>
+
+- Update to 3.10.7:
+ - Fix for CVE-2020-10735 (bsc#1203125) Converting between int
+ and str in bases other than 2 (binary), 4, 8 (octal), 16
+ (hexadecimal), or 32 such as base 10 (decimal) now raises
+ a ValueError if the number of digits in string form is above
+ a limit to avoid potential denial of service attacks due to
+ the algorithmic complexity.
+ - Other bug fixes:
+ - Fixed a bug that caused _PyCode_GetExtra to return garbage
+ for negative indexes.
+ - Fix format string in _PyPegen_raise_error_known_location
+ that can lead to memory corruption on some 64bit systems.
+ The function was building a tuple with i (int) instead of
+ n (Py_ssize_t) for Py_ssize_t arguments.
+ - Fix misleading contents of error message when converting an
+ all-whitespace string to float.
+ - coroutine.throw() now properly initializes the frame.f_back
+ when resuming a stack of coroutines. This allows e.g.
+ traceback.print_stack() to work correctly when an exception
+ (such as CancelledError) is thrown into a coroutine.
+ - ast.parse() will no longer parse function definitions with
+ positional-only params when passed feature_version less
+ than (3, 8).
+ - Correct conversion of numbers.Rational???s to float.
+ - Fix a performance regression in logging
+ TimedRotatingFileHandler. Only check for special files when
+ the rollover time has passed.
+ - Fix unused localName parameter in the Attr class in
+ xml.dom.minidom.
+ - Update bundled pip to 22.2.2.
+ - Fail gracefully if EPERM or ENOSYS is raised when loading
+ crypt methods. This may happen when trying to load MD5 on
+ a Linux kernel with FIPS enabled.
+ - Improve discoverability of the higher level
+ concurrent.futures module by providing clearer links from
+ the lower level threading and multiprocessing modules.
+ - Update the default RFC base URL from deprecated
+ tools.ietf.org to datatracker.ietf.org
+ - Fix stylesheet not working in Windows CHM htmlhelp docs.
+ - The documentation now lists which members of C structs are
+ part of the Limited API/Stable ABI.
+ - Mitigate the inherent race condition from using
+ find_unused_port() in testSockName() by trying to find an
+ unused port a few times before failing.
+ - Build and test with OpenSSL 1.1.1q
+ - Document handling of extensions in Save As dialogs.
+ - Include prompts when saving Shell (interactive input and
+ output).
+
+-------------------------------------------------------------------
@@ -206,0 +259,6 @@
+
+-------------------------------------------------------------------
+Sun Jul 31 09:41:30 UTC 2022 - Stephan Kulow <co...@suse.com>
+
+- Extend distutils-reproducible-compile.patch with a workaround
+ for non reproducible pyc files issue 93317
Old:
----
Python-3.10.6.tar.xz
Python-3.10.6.tar.xz.asc
New:
----
Python-3.10.7.tar.xz
Python-3.10.7.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python310.spec ++++++
--- /var/tmp/diff_new_pack.yYNi5k/_old 2022-09-17 20:08:11.080783821 +0200
+++ /var/tmp/diff_new_pack.yYNi5k/_new 2022-09-17 20:08:11.084783834 +0200
@@ -67,7 +67,7 @@
%define tarversion %{version}
%endif
# We don't process beta signs well
-%define folderversion 3.10.6
+%define folderversion 3.10.7
%define tarname Python-%{tarversion}
%define sitedir %{_libdir}/python%{python_version}
# three possible ABI kinds: m - pymalloc, d - debug build; see PEP 3149
@@ -103,7 +103,7 @@
%define dynlib()
%{sitedir}/lib-dynload/%{1}.cpython-%{abi_tag}-%{archname}-%{_os}%{?_gnu}%{?armsuffix}.so
%bcond_without profileopt
Name: %{python_pkg_name}%{psuffix}
-Version: 3.10.6
+Version: 3.10.7
Release: 0
Summary: Python 3 Interpreter
License: Python-2.0
++++++ Python-3.10.6.tar.xz -> Python-3.10.7.tar.xz ++++++
/work/SRC/openSUSE:Factory/python310/Python-3.10.6.tar.xz
/work/SRC/openSUSE:Factory/.python310.new.2083/Python-3.10.7.tar.xz differ:
char 27, line 1
++++++ distutils-reproducible-compile.patch ++++++
--- /var/tmp/diff_new_pack.yYNi5k/_old 2022-09-17 20:08:11.200784168 +0200
+++ /var/tmp/diff_new_pack.yYNi5k/_new 2022-09-17 20:08:11.204784180 +0200
@@ -1,9 +1,24 @@
----
- Lib/distutils/util.py | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
---- a/Lib/distutils/util.py
-+++ b/Lib/distutils/util.py
+Index: Python-3.10.5/Lib/compileall.py
+===================================================================
+--- Python-3.10.5.orig/Lib/compileall.py
++++ Python-3.10.5/Lib/compileall.py
+@@ -96,6 +96,12 @@ def compile_dir(dir, maxlevels=None, ddi
+ maxlevels = sys.getrecursionlimit()
+ files = _walk_dir(dir, quiet=quiet, maxlevels=maxlevels)
+ success = True
++ # work around https://github.com/python/cpython/issues/93317
++ sys.intern('{')
++ sys.intern('{{')
++ sys.intern('}')
++ sys.intern('}}')
++
+ if workers != 1 and ProcessPoolExecutor is not None:
+ # If workers == 0, let ProcessPoolExecutor choose
+ workers = workers or None
+Index: Python-3.10.5/Lib/distutils/util.py
+===================================================================
+--- Python-3.10.5.orig/Lib/distutils/util.py
++++ Python-3.10.5/Lib/distutils/util.py
@@ -436,7 +436,7 @@ byte_compile(files, optimize=%r, force=%
else:
from py_compile import compile
++++++ fix_configure_rst.patch ++++++
--- /var/tmp/diff_new_pack.yYNi5k/_old 2022-09-17 20:08:11.216784214 +0200
+++ /var/tmp/diff_new_pack.yYNi5k/_new 2022-09-17 20:08:11.220784225 +0200
@@ -29,7 +29,7 @@
Create a Python.framework rather than a traditional Unix install. Optional
--- a/Misc/NEWS
+++ b/Misc/NEWS
-@@ -2683,7 +2683,7 @@ C API
+@@ -2783,7 +2783,7 @@ C API
-----
- bpo-43795: The list in :ref:`stable-abi-list` now shows the public name
++++++ support-expat-CVE-2022-25236-patched.patch ++++++
--- /var/tmp/diff_new_pack.yYNi5k/_old 2022-09-17 20:08:11.324784526 +0200
+++ /var/tmp/diff_new_pack.yYNi5k/_new 2022-09-17 20:08:11.328784538 +0200
@@ -23,8 +23,8 @@
Co-authored-by: Sebastian Pipping <sebast...@pipping.org>
---
- Lib/test/test_minidom.py | 25 ++++++++++---------------
- 1 file changed, 10 insertions(+), 15 deletions(-)
+ Lib/test/test_minidom.py | 23 +++++++++--------------
+ 1 file changed, 9 insertions(+), 14 deletions(-)
create mode 100644
Misc/NEWS.d/next/Library/2022-02-20-21-03-31.bpo-46811.8BxgdQ.rst
--- a/Lib/test/test_minidom.py
@@ -36,8 +36,8 @@
-import pyexpat
import xml.dom.minidom
- from xml.dom.minidom import parse, Node, Document, parseString
-@@ -1149,13 +1148,11 @@ class MinidomTest(unittest.TestCase):
+ from xml.dom.minidom import parse, Attr, Node, Document, parseString
+@@ -1163,13 +1162,11 @@ class MinidomTest(unittest.TestCase):
# Verify that character decoding errors raise exceptions instead
# of crashing
@@ -56,7 +56,7 @@
b'<fran\xe7ais>Comment \xe7a va ? Tr\xe8s bien
?</fran\xe7ais>')
doc.unlink()
-@@ -1617,12 +1614,10 @@ class MinidomTest(unittest.TestCase):
+@@ -1631,12 +1628,10 @@ class MinidomTest(unittest.TestCase):
self.confirm(doc2.namespaceURI == xml.dom.EMPTY_NAMESPACE)
def testExceptionOnSpacesInXMLNSValue(self):
