CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2022/10/14 09:11:26
Modified files:
lang/python/3.10: Makefile distinfo
lang/python/3.10/pkg: PLIST-tests
Log message:
https://docs.python.org/3.10/whatsnew/changelog.html#changelog
gh-97616: Fix multiplying a list by an integer (list *= int): detect the
integer overflow when the new allocated length is close to the
maximum size. Issue reported by Jordan Limor. Patch by Victor
Stinner.
gh-97612: Fix a shell code injection vulnerability in the
get-remote-certificate.py example script. The script no longer
uses a shell to run openssl commands. Issue reported and
initial fix by Caleb Shortt. Patch by Victor Stinner.
gh-68966: The deprecated mailcap module now refuses to inject unsafe text
(filenames, MIME types, parameters) into shell
commands. Instead of using such text, it will warn and act as
if a match was not found (or for test commands, as if the test
failed).
ok sthen
