commit python for openSUSE:Factory

root Mon, 27 Apr 2020 14:31:55 -0700

Hello community,

here is the log from the commit of package python for openSUSE:Factory checked 
in at 2020-04-27 23:30:47
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python (Old)
 and      /work/SRC/openSUSE:Factory/.python.new.2738 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "python"

Mon Apr 27 23:30:47 2020 rev:150 rq:798115 version:2.7.18

Changes:
--------
--- /work/SRC/openSUSE:Factory/python/python-base.changes       2020-02-15 
22:24:01.319264363 +0100
+++ /work/SRC/openSUSE:Factory/.python.new.2738/python-base.changes     
2020-04-27 23:31:02.158663346 +0200
@@ -1,0 +2,32 @@
+Mon Apr 27 06:56:55 UTC 2020 - Matej Cepl <[email protected]>
+
+- Use python3-Sphinx on anything more recent than SLE-15 (inclusive).
+
+-------------------------------------------------------------------
+Thu Apr 23 09:17:24 UTC 2020 - Matej Cepl <[email protected]>
+
+- Update to 2.7.18, final release of Python 2. Ever.:
+  - Newline characters have been escaped when performing uu
+    encoding to prevent them from overflowing into to content
+    section of the encoded file. This prevents malicious or
+    accidental modification of data during the decoding process.
+  - Fixes a ReDoS vulnerability in :mod:`http.cookiejar`. Patch
+    by Ben Caller.
+  - Fixed line numbers and column offsets for AST nodes for calls
+    without arguments in decorators.
+  - Disallow control characters in hostnames in http.client,
+    addressing CVE-2019-18348. Such potentially malicious header
+    injection URLs now cause a InvalidURL to be raised.
+  - Fix urllib.urlretrieve failing on subsequent ftp transfers
+    from the same host.
+  - Fix problems identified by GCC's -Wstringop-truncation
+    warning.
+  - AddRefActCtx() was needlessly being checked for failure in
+    PC/dl_nt.c.
+  - Prevent failure of test_relative_path in test_py_compile on
+    macOS Catalina.
+  - Fixed possible leak in :c:func:`PyArg_Parse` and similar
+    functions for format units "es#" and "et#" when the macro
+    :c:macro:`PY_SSIZE_T_CLEAN` is not defined.
+
+-------------------------------------------------------------------
--- /work/SRC/openSUSE:Factory/python/python-doc.changes        2020-02-15 
22:24:01.371264391 +0100
+++ /work/SRC/openSUSE:Factory/.python.new.2738/python-doc.changes      
2020-04-27 23:31:03.550666064 +0200
@@ -1,0 +2,39 @@
+Mon Apr 27 06:56:55 UTC 2020 - Matej Cepl <[email protected]>
+
+- Use python3-Sphinx on anything more recent than SLE-15 (inclusive).
+
+-------------------------------------------------------------------
+Thu Apr 23 09:17:24 UTC 2020 - Matej Cepl <[email protected]>
+
+- Update to 2.7.18, final release of Python 2. Ever.:
+  - Newline characters have been escaped when performing uu
+    encoding to prevent them from overflowing into to content
+    section of the encoded file. This prevents malicious or
+    accidental modification of data during the decoding process.
+  - Fixes a ReDoS vulnerability in :mod:`http.cookiejar`. Patch
+    by Ben Caller.
+  - Fixed line numbers and column offsets for AST nodes for calls
+    without arguments in decorators.
+  - Disallow control characters in hostnames in http.client,
+    addressing CVE-2019-18348. Such potentially malicious header
+    injection URLs now cause a InvalidURL to be raised.
+  - Fix urllib.urlretrieve failing on subsequent ftp transfers
+    from the same host.
+  - Fix problems identified by GCC's -Wstringop-truncation
+    warning.
+  - AddRefActCtx() was needlessly being checked for failure in
+    PC/dl_nt.c.
+  - Prevent failure of test_relative_path in test_py_compile on
+    macOS Catalina.
+  - Fixed possible leak in :c:func:`PyArg_Parse` and similar
+    functions for format units "es#" and "et#" when the macro
+    :c:macro:`PY_SSIZE_T_CLEAN` is not defined.
+
+-------------------------------------------------------------------
+Sat Feb  8 23:29:28 CET 2020 - Matej Cepl <[email protected]>
+
+- Add CVE-2019-9674-zip-bomb.patch to improve documentation
+  warning about dangers of zip-bombs and other security problems
+  with zipfile library. (bsc#1162825 CVE-2019-9674)
+
+-------------------------------------------------------------------
python.changes: same change

Old:
----
  Python-2.7.17.tar.xz
  Python-2.7.17.tar.xz.asc
  python-2.7.17-docs-pdf-a4.tar.bz2
  python-2.7.17-docs-pdf-letter.tar.bz2

New:
----
  Python-2.7.18.tar.xz
  Python-2.7.18.tar.xz.asc
  python-2.7.18-docs-pdf-a4.tar.bz2
  python-2.7.18-docs-pdf-letter.tar.bz2

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ python-base.spec ++++++
--- /var/tmp/diff_new_pack.TxhB7q/_old  2020-04-27 23:31:05.038668968 +0200
+++ /var/tmp/diff_new_pack.TxhB7q/_new  2020-04-27 23:31:05.038668968 +0200
@@ -19,7 +19,7 @@
 %define so_version 2_7-1_0
 
 Name:           python-base
-Version:        2.7.17
+Version:        2.7.18
 Release:        0
 Summary:        Python Interpreter base package
 License:        Python-2.0

++++++ python-doc.spec ++++++
--- /var/tmp/diff_new_pack.TxhB7q/_old  2020-04-27 23:31:05.062669015 +0200
+++ /var/tmp/diff_new_pack.TxhB7q/_new  2020-04-27 23:31:05.062669015 +0200
@@ -17,7 +17,7 @@
 
 
 Name:           python-doc
-Version:        2.7.17
+Version:        2.7.18
 Release:        0
 Summary:        Additional Package Documentation for Python
 License:        Python-2.0
@@ -31,7 +31,11 @@
 #Source3:        
http://docs.python.org/%{version}/archives/python-%{pyver}-docs-pdf-letter.tar.bz2
 Source2:        python-%{version}-docs-pdf-a4.tar.bz2
 Source3:        python-%{version}-docs-pdf-letter.tar.bz2
+%if 0%{?suse_version} >= 1500
+BuildRequires:  python3-Sphinx
+%else
 BuildRequires:  python-Sphinx
+%endif
 BuildRequires:  xz
 # COMMON-PATCH-BEGIN
 Patch1:         python-2.7-dirs.patch

++++++ python.spec ++++++
--- /var/tmp/diff_new_pack.TxhB7q/_old  2020-04-27 23:31:05.086669061 +0200
+++ /var/tmp/diff_new_pack.TxhB7q/_new  2020-04-27 23:31:05.090669070 +0200
@@ -17,7 +17,7 @@
 
 
 Name:           python
-Version:        2.7.17
+Version:        2.7.18
 Release:        0
 Summary:        Python Interpreter
 License:        Python-2.0

++++++ Python-2.7.17.tar.xz -> Python-2.7.18.tar.xz ++++++
/work/SRC/openSUSE:Factory/python/Python-2.7.17.tar.xz 
/work/SRC/openSUSE:Factory/.python.new.2738/Python-2.7.18.tar.xz differ: char 
46, line 1

++++++ python-2.7.17-docs-pdf-a4.tar.bz2 -> python-2.7.18-docs-pdf-a4.tar.bz2 
++++++
/work/SRC/openSUSE:Factory/python/python-2.7.17-docs-pdf-a4.tar.bz2 
/work/SRC/openSUSE:Factory/.python.new.2738/python-2.7.18-docs-pdf-a4.tar.bz2 
differ: char 11, line 1

++++++ python-2.7.17-docs-pdf-letter.tar.bz2 -> 
python-2.7.18-docs-pdf-letter.tar.bz2 ++++++
/work/SRC/openSUSE:Factory/python/python-2.7.17-docs-pdf-letter.tar.bz2 
/work/SRC/openSUSE:Factory/.python.new.2738/python-2.7.18-docs-pdf-letter.tar.bz2
 differ: char 11, line 1

commit python for openSUSE:Factory

Reply via email to