commit python for openSUSE:Factory

root Mon, 04 Nov 2019 08:10:18 -0800

Hello community,

here is the log from the commit of package python for openSUSE:Factory checked 
in at 2019-11-04 17:08:49
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python (Old)
 and      /work/SRC/openSUSE:Factory/.python.new.2990 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "python"

Mon Nov  4 17:08:49 2019 rev:143 rq:742620 version:2.7.17

Changes:
--------
--- /work/SRC/openSUSE:Factory/python/python-base.changes       2019-10-22 
15:36:53.485133015 +0200
+++ /work/SRC/openSUSE:Factory/.python.new.2990/python-base.changes     
2019-11-04 17:08:53.768420719 +0100
@@ -1,0 +2,13 @@
+Thu Oct 24 14:40:39 CEST 2019 - Matej Cepl <[email protected]>
+
+- Update to 2.7.17:
+  - a bug fix release in the Python 2.7.x series. It is expected
+    to be the penultimate release for Python 2.7.
+- Removed patches included upstream:
+  - CVE-2018-20852-cookie-domain-check.patch
+  - CVE-2019-16935-xmlrpc-doc-server_title.patch
+  - CVE-2019-9636-netloc-no-decompose-characters.patch
+  - CVE-2019-9947-no-ctrl-char-http.patch
+  - CVE-2019-9948-avoid_local-file.patch
+
+-------------------------------------------------------------------
python.changes: same change

Old:
----
  CVE-2018-20852-cookie-domain-check.patch
  CVE-2019-16935-xmlrpc-doc-server_title.patch
  CVE-2019-9636-netloc-no-decompose-characters.patch
  CVE-2019-9947-no-ctrl-char-http.patch
  CVE-2019-9948-avoid_local-file.patch
  Python-2.7.16.tar.xz
  Python-2.7.16.tar.xz.asc
  python-2.7.16-docs-pdf-a4.tar.bz2
  python-2.7.16-docs-pdf-letter.tar.bz2

New:
----
  Python-2.7.17.tar.xz
  Python-2.7.17.tar.xz.asc
  python-2.7.17-docs-pdf-a4.tar.bz2
  python-2.7.17-docs-pdf-letter.tar.bz2

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ python-base.spec ++++++
--- /var/tmp/diff_new_pack.VUHDgv/_old  2019-11-04 17:08:55.852422945 +0100
+++ /var/tmp/diff_new_pack.VUHDgv/_new  2019-11-04 17:08:55.860422954 +0100
@@ -17,7 +17,7 @@
 
 
 Name:           python-base
-Version:        2.7.16
+Version:        2.7.17
 Release:        0
 Summary:        Python Interpreter base package
 License:        Python-2.0
@@ -72,23 +72,8 @@
 # PATCH-FIX-UPSTREAM bpo36160-init-sysconfig_vars.patch 
gh#python/cpython#12131 [email protected]
 # Initialize sysconfig variables in test_site.
 Patch50:        bpo36160-init-sysconfig_vars.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9636-netloc-no-decompose-characters.patch 
bsc#1129346 [email protected]
-# https://bugs.python.org/issue36216
-Patch51:        CVE-2019-9636-netloc-no-decompose-characters.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9948-avoid_local-file.patch bsc#1130847 
[email protected]
-# removing unnecessary (and potentially harmful) URL scheme local-file://
-Patch52:        CVE-2019-9948-avoid_local-file.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9947-no-ctrl-char-http.patch bsc#1130840 
[email protected]
-# bpo#30458: Disallow control chars in http URLs.
-Patch53:        CVE-2019-9947-no-ctrl-char-http.patch
-# PATCH-FIX-UPSTREAM CVE-2018-20852-cookie-domain-check.patch bsc#1141853 
[email protected]
-# http.cookiejar.DefaultPolicy.domain_return_ok does not correctly validate 
the domain
-Patch54:        CVE-2018-20852-cookie-domain-check.patch
 # PATCH-FIX-UPSTREAM https://github.com/python/cpython/pull/12341
 Patch55:        bpo36302-sort-module-sources.patch
-# PATCH-FIX-UPSTREAM CVE-2019-16935-xmlrpc-doc-server_title.patch bsc#1153238 
[email protected]
-# XSS vulnerability in the documentation XML-RPC server in server_title field
-Patch56:        CVE-2019-16935-xmlrpc-doc-server_title.patch
 # COMMON-PATCH-END
 %define         python_version    %(echo %{tarversion} | head -c 3)
 BuildRequires:  automake
@@ -200,12 +185,7 @@
 %patch48 -p1
 %patch49 -p1
 %patch50 -p1
-%patch51 -p1
-%patch52 -p1
-%patch53 -p1
-%patch54 -p1
 %patch55 -p1
-%patch56 -p1
 
 # drop Autoconf version requirement
 sed -i 's/^version_required/dnl version_required/' configure.ac

++++++ python-doc.spec ++++++
--- /var/tmp/diff_new_pack.VUHDgv/_old  2019-11-04 17:08:55.876422971 +0100
+++ /var/tmp/diff_new_pack.VUHDgv/_new  2019-11-04 17:08:55.880422975 +0100
@@ -17,7 +17,7 @@
 
 
 Name:           python-doc
-Version:        2.7.16
+Version:        2.7.17
 Release:        0
 Summary:        Additional Package Documentation for Python
 License:        Python-2.0
@@ -72,23 +72,8 @@
 # PATCH-FIX-UPSTREAM bpo36160-init-sysconfig_vars.patch 
gh#python/cpython#12131 [email protected]
 # Initialize sysconfig variables in test_site.
 Patch50:        bpo36160-init-sysconfig_vars.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9636-netloc-no-decompose-characters.patch 
bsc#1129346 [email protected]
-# https://bugs.python.org/issue36216
-Patch51:        CVE-2019-9636-netloc-no-decompose-characters.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9948-avoid_local-file.patch bsc#1130847 
[email protected]
-# removing unnecessary (and potentially harmful) URL scheme local-file://
-Patch52:        CVE-2019-9948-avoid_local-file.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9947-no-ctrl-char-http.patch bsc#1130840 
[email protected]
-# bpo#30458: Disallow control chars in http URLs.
-Patch53:        CVE-2019-9947-no-ctrl-char-http.patch
-# PATCH-FIX-UPSTREAM CVE-2018-20852-cookie-domain-check.patch bsc#1141853 
[email protected]
-# http.cookiejar.DefaultPolicy.domain_return_ok does not correctly validate 
the domain
-Patch54:        CVE-2018-20852-cookie-domain-check.patch
 # PATCH-FIX-UPSTREAM https://github.com/python/cpython/pull/12341
 Patch55:        bpo36302-sort-module-sources.patch
-# PATCH-FIX-UPSTREAM CVE-2019-16935-xmlrpc-doc-server_title.patch bsc#1153238 
[email protected]
-# XSS vulnerability in the documentation XML-RPC server in server_title field
-Patch56:        CVE-2019-16935-xmlrpc-doc-server_title.patch
 # COMMON-PATCH-END
 Provides:       pyth_doc
 Provides:       pyth_ps
@@ -146,12 +131,7 @@
 %patch48 -p1
 %patch49 -p1
 %patch50 -p1
-%patch51 -p1
-%patch52 -p1
-%patch53 -p1
-%patch54 -p1
 %patch55 -p1
-%patch56 -p1
 
 # drop Autoconf version requirement
 sed -i 's/^version_required/dnl version_required/' configure.ac

++++++ python.spec ++++++
--- /var/tmp/diff_new_pack.VUHDgv/_old  2019-11-04 17:08:55.904423001 +0100
+++ /var/tmp/diff_new_pack.VUHDgv/_new  2019-11-04 17:08:55.908423005 +0100
@@ -17,7 +17,7 @@
 
 
 Name:           python
-Version:        2.7.16
+Version:        2.7.17
 Release:        0
 Summary:        Python Interpreter
 License:        Python-2.0
@@ -77,23 +77,8 @@
 # PATCH-FIX-UPSTREAM bpo36160-init-sysconfig_vars.patch 
gh#python/cpython#12131 [email protected]
 # Initialize sysconfig variables in test_site.
 Patch50:        bpo36160-init-sysconfig_vars.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9636-netloc-no-decompose-characters.patch 
bsc#1129346 [email protected]
-# https://bugs.python.org/issue36216
-Patch51:        CVE-2019-9636-netloc-no-decompose-characters.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9948-avoid_local-file.patch bsc#1130847 
[email protected]
-# removing unnecessary (and potentially harmful) URL scheme local-file://
-Patch52:        CVE-2019-9948-avoid_local-file.patch
-# PATCH-FIX-UPSTREAM CVE-2019-9947-no-ctrl-char-http.patch bsc#1130840 
[email protected]
-# bpo#30458: Disallow control chars in http URLs.
-Patch53:        CVE-2019-9947-no-ctrl-char-http.patch
-# PATCH-FIX-UPSTREAM CVE-2018-20852-cookie-domain-check.patch bsc#1141853 
[email protected]
-# http.cookiejar.DefaultPolicy.domain_return_ok does not correctly validate 
the domain
-Patch54:        CVE-2018-20852-cookie-domain-check.patch
 # PATCH-FIX-UPSTREAM https://github.com/python/cpython/pull/12341
 Patch55:        bpo36302-sort-module-sources.patch
-# PATCH-FIX-UPSTREAM CVE-2019-16935-xmlrpc-doc-server_title.patch bsc#1153238 
[email protected]
-# XSS vulnerability in the documentation XML-RPC server in server_title field
-Patch56:        CVE-2019-16935-xmlrpc-doc-server_title.patch
 # COMMON-PATCH-END
 BuildRequires:  automake
 BuildRequires:  db-devel
@@ -251,12 +236,7 @@
 %patch48 -p1
 %patch49 -p1
 %patch50 -p1
-%patch51 -p1
-%patch52 -p1
-%patch53 -p1
-%patch54 -p1
 %patch55 -p1
-%patch56 -p1
 
 # drop Autoconf version requirement
 sed -i 's/^version_required/dnl version_required/' configure.ac

++++++ Python-2.7.16.tar.xz -> Python-2.7.17.tar.xz ++++++
/work/SRC/openSUSE:Factory/python/Python-2.7.16.tar.xz 
/work/SRC/openSUSE:Factory/.python.new.2990/Python-2.7.17.tar.xz differ: char 
27, line 1

++++++ python-2.7.16-docs-pdf-a4.tar.bz2 -> python-2.7.17-docs-pdf-a4.tar.bz2 
++++++
/work/SRC/openSUSE:Factory/python/python-2.7.16-docs-pdf-a4.tar.bz2 
/work/SRC/openSUSE:Factory/.python.new.2990/python-2.7.17-docs-pdf-a4.tar.bz2 
differ: char 11, line 1

++++++ python-2.7.16-docs-pdf-letter.tar.bz2 -> 
python-2.7.17-docs-pdf-letter.tar.bz2 ++++++
/work/SRC/openSUSE:Factory/python/python-2.7.16-docs-pdf-letter.tar.bz2 
/work/SRC/openSUSE:Factory/.python.new.2990/python-2.7.17-docs-pdf-letter.tar.bz2
 differ: char 11, line 1

commit python for openSUSE:Factory

Reply via email to