Dominique Leuenberger (dimstar_suse) accepted request 405901 from Jan Matejek (matejcik) over 8 years ago (revision 119)

- update to 2.7.12
  * dozens of bugfixes, see NEWS for details
  * fixes multiple security issues:
    CVE-2016-0772 TLS stripping attack on smtplib (bsc#984751)
    CVE-2016-5636 zipimporter heap overflow (bsc#985177)
    CVE-2016-5699 httplib header injection (bsc#985348)
      (this one is actually fixed since 2.7.10)
- removed upstreamed python-2.7.7-mhlib-linkcount.patch
- refreshed multilib patch
- python-2.7.12-makeopcode.patch - run newly-built python interpreter
  to make opcodes, in order not to require pre-built python
- update LD_LIBRARY_PATH to use $PWD instead of "." because the test
  process escapes to its own directory
- modify shebang-fixing scriptlet to ignore makeopcodetargets.py

• Files Changed
• Browse Source

Dominique Leuenberger (dimstar_suse) accepted request 361136 from Jan Matejek (matejcik) over 8 years ago (revision 118)

1

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 331039 from Jan Matejek (matejcik) about 9 years ago (revision 117)

- copy strict-tls-checks subpackage from SLE to retain future compatibility
  (not built in openSUSE)
- do this properly to fix bnc#945401
- Add python-ncurses-6.0-accessors.patch: Fix build with
  NCurses 6.0 and OPAQUE_WINDOW set to 1.

• Files Changed
• Browse Source

Dominique Leuenberger (dimstar_suse) accepted request 311484 from Jan Matejek (matejcik) over 9 years ago (revision 116)

1

• Files Changed
• Browse Source

Dominique Leuenberger (dimstar_suse) accepted request 309857 from Jan Matejek (matejcik) over 9 years ago (revision 115)

- update to 2.7.10

• Files Changed
• Browse Source

Dominique Leuenberger (dimstar_suse) accepted request 308249 from Jan Matejek (matejcik) over 9 years ago (revision 114)

- Reenable test_posix on aarch64
- for SLE 12 SP1, disable SSL verification-by-default for backwards
  compatibility (python-2.7.9-sles-disable-verification-by-default.patch)

• Files Changed
• Browse Source

Dominique Leuenberger (dimstar_suse) accepted request 289256 from Factory Maintainer (factory-maintainer) over 9 years ago (revision 113)

Automatic submission by obs-autosubmit

• Files Changed
• Browse Source

Dominique Leuenberger (dimstar_suse) accepted request 266173 from Jan Matejek (matejcik) almost 10 years ago (revision 112)

1

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 265739 from Jan Matejek (matejcik) almost 10 years ago (revision 111)

- update to 2.7.9
  * contains full backport of ssl module from Python 3.4 (PEP466)
  * HTTPS certificate validation enabled by default (PEP476)
  * SSLv3 disabled by default (bnc#901715)
  * backported ensurepip module (PEP477)
  * fixes several missing CVEs from last release: CVE-2013-1752,
    CVE-2013-1753
  * dozens of minor bugfixes
- dropped upstreamed patches: python-2.7.6-poplib.patch,
  smtplib_maxline-2.7.patch, xmlrpc_gzip_27.patch
- dropped patch python-2.7.3-ssl_ca_path.patch because we don't need it
  with ssl module from Python 3
- libffi was upgraded upstream, seems to contain our changes,
  so dropping libffi-ppc64le.diff as well
- python-2.7-urllib2-localnet-ssl.patch - properly remove unconditional
  "import ssl" from test_urllib2_localnet that caused it to fail without ssl
- drop HTML doc tarball, build HTML documentation from source
- set fixed doc build date, lower sphinx requirement (for older openSUSE)

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 258807 from Factory Maintainer (factory-maintainer) about 10 years ago (revision 110)

Automatic submission by obs-autosubmit

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 253635 from Jan Matejek (matejcik) about 10 years ago (revision 109)

- update to 2.7.8
  * bugfix-only release, dozens of bugs fixed
  * fixes CVE-2014-4650 directory traversal in CGIHTTPServer
  * fixes CVE-2014-7185 (bnc#898572) potential buffer overflow in buffer()
- dropped upstreamed CVE-2014-4650-CGIHTTPserver-traversal.patch

• Files Changed
• Browse Source

Adrian Schröter (adrianSuSE) committed about 10 years ago (revision 108)

Split 13.2 from Factory

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 242381 from Jan Matejek (matejcik) over 10 years ago (revision 107)

- CVE-2014-4650-CGIHTTPServer-traversal.patch: CGIHTTPServer file
  disclosure and directory traversal through URL-encoded characters
  (CVE-2014-4650, bnc#885882)
- python-2.7.7-mhlib-linkcount.patch: remove link count optimizations
  that are incorrect on btrfs (and possibly other filesystems)

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 238381 from Jan Matejek (matejcik) over 10 years ago (revision 106)

- update to 2.7.7
  * bugfix-only release, over a hundred bugs fixed
  * backported hmac.compare_digest from python3, first step of PEP 466
- drop upstreamed patches:
  * CVE-2014-1912-recvfrom_into.patch
  * python-2.7.4-no-REUSEPORT.patch
  * python-2.7.6-bdist-rpm.patch
  * python-2.7.6-imaplib.patch
  * python-2.7.6-sqlite-3.8.4-tests.patch
- refresh patches:
  * python-2.7.3-ssl_ca_path.patch
  * python-2.7.4-canonicalize2.patch
  * xmlrpc_gzip_27.patch
- added python keyring and signature for the main tarball

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 226492 from Jan Matejek (matejcik) over 10 years ago (revision 105)

- Use profile-opt only when profiling is enabled
- python-2.7.2-disable-tests-in-test_io.patch: removed, no longer needed
- update testsuite exclusion list:
  * test_signal and test_posix fail due to qemu bugs (forwarded request 226488 from Andreas_Schwab)

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 222235 from Jan Matejek (matejcik) almost 11 years ago (revision 104)

- added patches for CVE-2013-1752 (bnc#856836) issues that are
  missing in 2.7.6:
  python-2.7.6-imaplib.patch
  python-2.7.6-poplib.patch
  smtplib_maxline-2.7.patch
- CVE-2013-1753 (bnc#856835) gzip decompression bomb in xmlrpc client:
  xmlrpc_gzip_27.patch
- python-2.7.6-bdist-rpm.patch: fix broken "setup.py bdist_rpm" command
  (bnc#857470, issue18045)
- multilib patch: add "~/.local/lib64" paths to search path
  (bnc#637176)
- CVE-2014-1912-recvfrom_into.patch: fix potential buffer overflow
  in socket.recvfrom_into (CVE-2014-1912, bnc#863741)

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 213846 from Sascha Peilicke (saschpe) almost 11 years ago (revision 103)

- Add Obsoletes/Provides for python-ctypes. (forwarded request 213741 from k0da)

• Files Changed
• Browse Source

Tomáš Chvátal (scarabeus_factory) accepted request 212641 from Jan Matejek (matejcik) almost 11 years ago (revision 102)

Please submit to factory.
- Ignore uuid testcase in the testsuite, it relies on unreliable
  ifconfig output. (forwarded request 209702 from matz2)

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 209596 from Sascha Peilicke (saschpe) almost 11 years ago (revision 101)

Fix python for ppc64le, please forward to factory asap (forwarded request 209414 from adrianSuSE)

• Files Changed
• Browse Source

Stephan Kulow (coolo) accepted request 208559 from Jan Matejek (matejcik) about 11 years ago (revision 100)

- update to 2.7.6
  * bugfix-only release
  * SSL-related fixes
  * upstream fix for CVE-2013-4238
  * upstream fixes for CVE-2013-1752
- removed upstreamed patch CVE-2013-4238_py27.patch
- reintroduce audioop.so as the problems with it seem to be fixed
  (bnc#831442)
- docs are now versioned with patchlevel too

• Files Changed
• Browse Source