Python for Salt Bundle
No description set
- Sources inherited from project systemsmanagement:s...ack:bundle:testing
-
2
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout systemsmanagement:saltstack:bundle:testing:Ubuntu2004/saltbundlepy && cd $_
- Create Badge
Refresh
Refresh
Source Files
Revision 14 (latest revision is 17)
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1166458
from
Victor Zhestkov (vizhestkov)
(revision 14)
- Update 3.10.14: * gh-115399 & gh-115398: bundled libexpat was updated to 2.6.0 to address CVE-2023-52425, and control of the new reparse deferral functionality was exposed with new APIs (bsc#1219559). * gh-109858: zipfile is now protected from the “quoted-overlap” zipbomb to address CVE-2024-0450. It now raises BadZipFile when attempting to read an entry that overlaps with another entry or central directory. (bsc#1221854) * gh-91133: tempfile.TemporaryDirectory cleanup no longer dereferences symlinks when working around file system permission errors to address CVE-2023-6597 (bsc#1219666) * gh-115197: urllib.request no longer resolves the hostname before checking it against the system’s proxy bypass list on macOS and Windows * gh-81194: a crash in socket.if_indextoname() with a specific value (UINT_MAX) was fixed. Relatedly, an integer overflow in socket.if_indextoname() on 64-bit non-Windows platforms was fixed * gh-113659: .pth files with names starting with a dot or containing the hidden file attribute are now skipped * gh-102388: iso2022_jp_3 and iso2022_jp_2004 codecs no longer read out of bounds * gh-114572: ssl.SSLContext.cert_store_stats() and ssl.SSLContext.get_ca_certs() now correctly lock access to the certificate store, when the ssl.SSLContext is shared across multiple threads - Add old-libexpat.patch making the test suite work with libexpat < 2.6.0 (gh#python/cpython#117187). - Refreshing the patches to adjust for newer version.
Comments 0