Hello community,
here is the log from the commit of package python-httplib2 for openSUSE:Factory
checked in at 2020-10-25 18:10:14
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-httplib2 (Old)
and /work/SRC/openSUSE:Factory/.python-httplib2.new.3463 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-httplib2"
Sun Oct 25 18:10:14 2020 rev:47 rq:841414 version:0.18.1
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-httplib2/python-httplib2.changes
2020-05-08 23:03:28.717632672 +0200
+++
/work/SRC/openSUSE:Factory/.python-httplib2.new.3463/python-httplib2.changes
2020-10-25 18:10:15.727552097 +0100
@@ -1,0 +2,9 @@
+Tue Oct 13 07:26:46 UTC 2020 - Dirk Mueller <[email protected]>
+
+- update to 0.18.1:
+ * explicit build-backend workaround for pip build isolation bug
+ * IMPORTANT security vulnerability CWE-93 CRLF injection
+ Force %xx quote of space, CR, LF characters in uri.
+ * Ship test suite in source dist
+
+-------------------------------------------------------------------
Old:
----
httplib2-0.17.3.tar.gz
New:
----
httplib2-0.18.1.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-httplib2.spec ++++++
--- /var/tmp/diff_new_pack.5XARzR/_old 2020-10-25 18:10:16.531552858 +0100
+++ /var/tmp/diff_new_pack.5XARzR/_new 2020-10-25 18:10:16.535552862 +0100
@@ -20,7 +20,7 @@
# Tests require network connection
%bcond_with tests
Name: python-httplib2
-Version: 0.17.3
+Version: 0.18.1
Release: 0
Summary: A Python HTTP client library
License: MIT AND Apache-2.0 AND (MPL-1.1 OR GPL-2.0-or-later OR
LGPL-2.1-or-later)
++++++ httplib2-0.17.3.tar.gz -> httplib2-0.18.1.tar.gz ++++++
++++ 5150 lines of diff (skipped)
