On Sat, 3 Jul 2010 11:17:16 +0100 Mark Dickinson <dicki...@gmail.com> wrote: > On Sat, Jul 3, 2010 at 4:28 AM, Benjamin Peterson <benja...@python.org> wrote: > > This is just a note that we have one bug blocking 2.7 final at the > > moment: http://bugs.python.org/issue9144 > > I've just made http://bugs.python.org/issue7673 a release blocker too, > I'm afraid. It's a potential security vulnerability in the audioop > module. (CVE-2010-2089). It's got a reviewed patch, and is ready to > be committed, but if you're not comfortable with fixing it this late > then that's completely understandable.
Interestingly, Victor filed both the issue and the initial patch five months before the CVE alert. Well done Victor! _______________________________________________ Python-Dev mailing list Python-Dev@python.org http://mail.python.org/mailman/listinfo/python-dev Unsubscribe: http://mail.python.org/mailman/options/python-dev/archive%40mail-archive.com