This bug was fixed in the package python3.7 - 3.7.3-2~18.10 --------------- python3.7 (3.7.3-2~18.10) cosmic; urgency=medium
* SRU: LP: #1822993. Update to the 3.7.3 release. python3.7 (3.7.3-2) unstable; urgency=medium * d/p/arm-alignment.diff: Don't allow unaligned memory accesses in the _sha3 extension (Dave Jones). LP: #1821869. Issue #36515. * Tweak the asyncio/ssl test again. python3.7 (3.7.3-1) unstable; urgency=medium * Python 3.7.3 release. * Work around issue #35988, reducing the payload size for the asyncio/ssl tests. python3.7 (3.7.3~rc1-1) unstable; urgency=medium * Python 3.7.3 release candidate 1. * CVE-2019-9636. Fix issue #36216: Add check for characters in netloc that normalize to separators. Closes: #924072. * Use a build profile for libbluetooth-dev (<!pkg.python3.7.nobluetooth>). python3.7 (3.7.2-3) unstable; urgency=medium * Update to 20190227 from the 3.7 branch. * Add more breaks for packages not compatible with Python 3.7: - xapers. Closes: #916914. * Move the test/ann_module{,2,3} modules into libpython-stdlib. Closes: #922285. * Limit the import checks for some extension modules to native builds. Closes: #921742. python3.7 (3.7.2-2) unstable; urgency=medium * Update to 20190202 from the 3.7 branch. python3.7 (3.7.2-1) unstable; urgency=medium * Python 3.7.2 release. * Revert the link optimization changes which appeared after the release candidate. * Make the build compatible with sphinx 1.6.x. * Loosen the pyzo break. Closes: #916548. python3.7 (3.7.2~rc1-1) unstable; urgency=medium * Python 3.7.2 release candidate 1. * Add more breaks for packages not compatible with Python 3.7: - python3-dns. Closes: #912988. - python3-dkim. Closes: #912084. - pyzo. Closes: #914332. * Update VCS attributes. Closes: #904097. * Update symbols files. -- Matthias Klose <d...@ubuntu.com> Tue, 09 Apr 2019 06:56:51 +0200 ** Changed in: python2.7 (Ubuntu Cosmic) Status: Fix Committed => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2013-1752 ** CVE added: https://cve.mitre.org/cgi- bin/cvename.cgi?name=2018-1000802 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-14647 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-5010 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-9948 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to python2.7 in Ubuntu. https://bugs.launchpad.net/bugs/1822993 Title: SRU: update Python 2.7 to 2.7.16, Python 3.7 to 3.7.3 and 3.6 to 3.6.8 Status in python-stdlib-extensions package in Ubuntu: Fix Released Status in python2.7 package in Ubuntu: Fix Released Status in python3-stdlib-extensions package in Ubuntu: Fix Released Status in python3.7 package in Ubuntu: Fix Released Status in python-stdlib-extensions source package in Bionic: Fix Committed Status in python3-stdlib-extensions source package in Bionic: Fix Committed Status in python-stdlib-extensions source package in Cosmic: Fix Committed Status in python2.7 source package in Cosmic: Fix Released Status in python3-stdlib-extensions source package in Cosmic: Fix Released Status in python3.6 source package in Cosmic: Fix Released Status in python3.7 source package in Cosmic: Fix Released Bug description: SRU: update Python 3.7 to the 3.7.3 release, update Python 3.6 to the 3.6.8 release. python3-stdlib-extensions also updates the modules to the 3.6.8 release for Python 3.6. Acceptance Criteria: The package builds, and the test suite doesn't show regressions. The test suite passes in the autopkg tests. The new packages don't cause regressions in a test rebuild of the main component. http://people.canonical.com/~doko/ftbfs-report/test-rebuild-20190404-cosmic.html http://people.canonical.com/~doko/ftbfs-report/test-rebuild-20190404-gcc8-cosmic.html The test rebuilds are finished, and don't show any regressions for the main component. Regression Potential: Python 3.7 isn't used by default, so we don't have many default users. Regression Potential: Python 3.6 could see some regressions, although we are trying to minimize the risk by doing the test rebuild. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/python-stdlib-extensions/+bug/1822993/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp