Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP5:GA
python3.35772
python3-doc.spec
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File python3-doc.spec of Package python3.35772
# # spec file for package python3-doc # # Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: python3-doc URL: http://www.python.org/ BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: xz Summary: Additional Package Documentation for Python License: Python-2.0 Group: Development/Languages/Python Version: 3.4.10 Release: 0 BuildArch: noarch %define tarversion %{version} %define tarname Python-%{tarversion} Source0: http://www.python.org/ftp/python/%{tarversion}/%{tarname}.tar.xz # For Patch 34 Source34: recursion.tar BuildRequires: python-Sphinx %if 0%{?is_opensuse} && 0%{?sle_version} >= 120300 BuildRequires: python-Sphinx-latex %endif BuildRequires: texlive-cmap BuildRequires: texlive-collection-fontsrecommended BuildRequires: texlive-fancybox BuildRequires: texlive-fancyvrb BuildRequires: texlive-framed BuildRequires: texlive-mdwtools BuildRequires: texlive-multirow BuildRequires: texlive-parskip BuildRequires: texlive-scheme-basic BuildRequires: texlive-threeparttable BuildRequires: texlive-titlesec BuildRequires: texlive-ucs BuildRequires: texlive-upquote BuildRequires: texlive-wrapfig # for consistency: ### COMMON-PATCH-BEGIN ### # implement "--record-rpm" option for distutils installations Patch01: Python-3.0b1-record-rpm.patch # support lib-vs-lib64 distinction Patch02: Python-3.3.0b2-multilib.patch # support finding packages in /usr/local, install to /usr/local by default Patch04: python-3.3.0b1-localpath.patch # replace DATE, TIME and COMPILER by fixed definitions to aid reproducible builds Patch06: python-3.3.0b1-fix_date_time_compiler.patch # fix wrong include path in curses-panel module Patch07: python-3.3.0b1-curses-panel.patch # POSIX_FADV_WILLNEED throws EINVAL. Use a different constant in test Patch09: python-3.3.0b1-test-posix_fadvise.patch # Add missing bits for aarch64 in libffi Patch10: ctypes-libffi-aarch64.patch # Disable global and distutils sysconfig comparison test, we deviate from the default depending on optflags Patch12: python-3.3.3-skip-distutils-test_sysconfig_module.patch # Raise timeout value for test_subprocess Patch15: subprocess-raise-timeout.patch # PATCH-FIX-UPSTREAM Fix argument passing in libffi for aarch64 Patch18: python-2.7-libffi-aarch64.patch # PATCH-FIX-UPSTREAM Prefer lowercase proxy environment variables Patch19: python3-urllib-prefer-lowercase-proxies.patch # PATCH-FIX-UPSTREAM python-3.6-CVE-2017-18207.patch psimons@suse.com -- Add check for channels of wav file in Lib/wave.py # Suggested in https://github.com/python/cpython/pull/4437. Patch20: python-3.6-CVE-2017-18207.patch # PATCH-FIX-UPSTREAM https://bugs.python.org/issue30693 Patch21: python-sorted_tar.patch # PATCH-FIX-UPSTREAM CVE-2019-10160-netloc-port-regression.patch bsc#1138459 mcepl@suse.com # Fix regression introduced by fix for CVE-2019-9636 Patch26: CVE-2019-10160-netloc-port-regression.patch # PATCH-FIX-UPSTREAM CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch bsc#1109663 mcepl@suse.com # Command injection in the shutil module Patch28: CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch # PATCH-FIX-UPSTREAM CVE-2019-16056-email-parse-addr.patch bsc#1149955 mcepl@suse.com # bpo#34155 The email module wrongly parses email addresses Patch29: CVE-2019-16056-email-parse-addr.patch # PATCH-FIX-UPSTREAM CVE-2020-8492-urllib-ReDoS.patch bsc#1162367 mcepl@suse.com # Fixes Python urrlib allowed an HTTP server to conduct Regular # Expression Denial of Service (ReDoS) Patch30: CVE-2020-8492-urllib-ReDoS.patch # PATCH-FIX-UPSTREAM CVE-2019-9674-zip-bomb.patch bsc#1162825 mcepl@suse.com # Improve documentation warning against the possible zip bombs Patch31: CVE-2019-9674-zip-bomb.patch # PATCH-FIX-SLE skip-failing-tests.patch mcepl@suse.com # test_write_filtered_python_package just wants to fail, and I have no idea why. Patch32: skip-failing-tests.patch # PATCH-FIX-UPSTREAM CVE-2019-9947-no-ctrl-char-http.patch bsc#1130840 bpo#30458 # avoid CRLF injenction; Patch33: CVE-2019-9947-no-ctrl-char-http.patch # PATCH-FIX-UPSTREAM CVE-2019-18348-CRLF_injection_via_host_part.patch bsc#1155094 bpo#38576 # disallow control characters in hostnames in httplib # DEPENDS on PATCH32 Patch34: CVE-2019-18348-CRLF_injection_via_host_part.patch # PATCH-FIX-UPSTREAM CVE-2019-20907_tarfile-inf-loop.patch bsc#1174091 mcepl@suse.com # avoid possible infinite loop in specifically crafted tarball (CVE-2019-20907) # REQUIRES SOURCE 34 Patch35: CVE-2019-20907_tarfile-inf-loop.patch # PATCH-FIX-UPSTREAM bpo37614-race_test_docxmlrpc_srv_setup.patch bpo#27614 mcepl@suse.com # avoid race in test_docxmlrpc (REQUIRED for Patch #36) Patch36: bpo37614-race_test_docxmlrpc_srv_setup.patch # PATCH-FIX-UPSTREAM CVE-2019-16935-xmlrpc-doc-server_title.patch bsc#1153238 mcepl@suse.com # XSS vulnerability in the documentation XML-RPC server in server_title field Patch37: CVE-2019-16935-xmlrpc-doc-server_title.patch # PATCH-FIX-UPSTREAM CVE-2020-14422-ipaddress-hash-collision.patch bsc#1173274 mcepl@suse.com # oversimplicstic computation of hash values leads to conflicts and potential for DOS Patch38: CVE-2020-14422-ipaddress-hash-collision.patch # PATCH-FIX-UPSTREAM CVE-2020-26116-httplib-header-injection.patch bsc#1177211 bpo#39603 # Fixes httplib to disallow control characters in method to avoid header # injection, equivalent of Patch33 and Patch34 for method of URL (GET, POST, etc.) Patch39: CVE-2020-26116-httplib-header-injection.patch # Update SSL certificates due to certificates shipped with the package expiring Patch40: update-ssl-certs.patch # PATCH-FIX-UPSTREAM CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch bsc#1181126 mcepl@suse.com # buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution Patch41: CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch # PATCH-FIX-UPSTREAM CVE-2021-23336-only-amp-as-query-sep.patch bsc#1182379 mcepl@suse.com # urlparse only use '&' as a query string separator Patch42: CVE-2021-23336-only-amp-as-query-sep.patch # PATCH-FIX-UPSTREAM CVE-2020-27619-no-eval-http-content.patch bsc#1182207 mcepl@suse.com # No longer call eval() on content received via HTTP in the CJK codec tests Patch43: CVE-2020-27619-no-eval-http-content.patch # PATCH-FIX-UPSTREAM CVE-2021-3737-infinite-loop-on-100-Continue.patch bsc#1189241 mcepl@suse.com # avoid DoS via infinitely reading potential HTTP headers after a 100 Continue status response from the server Patch44: CVE-2021-3737-infinite-loop-on-100-Continue.patch # PATCH-FIX-UPSTREAM CVE-2021-3733-ReDoS-urllib-AbstractBasicAuthHandler.patch bsc#1189287 mcepl@suse.com # Fix ReDoS in urllib AbstractBasicAuthHandler (bpo#43075) Patch45: CVE-2021-3733-ReDoS-urllib-AbstractBasicAuthHandler.patch # PATCH-FIX-UPSTREAM CVE-2021-4189-ftplib-trust-PASV-resp.patch bsc#1194146 mcepl@suse.com # Make ftplib not trust the PASV response. (gh#python/cpython#24838) Patch46: CVE-2021-4189-ftplib-trust-PASV-resp.patch # PATCH-FIX-UPSTREAM CVE-2022-0391-urllib_parse-newline-parsing.patch bsc#1195396 mcepl@suse.com # whole long discussion is on bpo#43882 # fix for santization URLs containing ASCII newline and tabs in urllib.parse Patch47: CVE-2022-0391-urllib_parse-newline-parsing.patch # PATCH-FIX-UPSTREAM CVE-2015-20107-mailcap-unsafe-filenames.patch bsc#1198511 mcepl@suse.com # avoid the command injection in the mailcap module. Patch48: CVE-2015-20107-mailcap-unsafe-filenames.patch # PATCH-FIX-UPSTREAM bpo-46623-skip-zlib-s390x.patch gh#python/cpython#90781 mcepl@suse.com # skip two tests failing on s390x Patch49: bpo-46623-skip-zlib-s390x.patch # PATCH-FIX-UPSTREAM CVE-2021-28861 bsc#1202624 # Coerce // to / in Lib/http/server.py Patch50: CVE-2021-28861-double-slash-path.patch # PATCH-FIX-UPSTREAM CVE-2020-10735-DoS-no-limit-int-size.patch bsc#1203125 mcepl@suse.com # unlimited size of integers allows DoS by excessively long processing of large numbers # >> n = 10**(10**7) ; s = str(n) # Originally by Victor Stinner of Red Hat # https://github.com/fedora-python/cpython/commit/31cfb692dc5d Patch51: CVE-2020-10735-DoS-no-limit-int-size.patch # PATCH-FIX-UPSTREAM CVE-2022-45061-DoS-by-IDNA-decode.patch bsc#1205244 mcepl@suse.com # Avoid DoS by decoding IDNA for too long domain names Patch52: CVE-2022-45061-DoS-by-IDNA-decode.patch # PATCH-FIX-UPSTREAM CVE-2022-40899-ReDos-cookiejar.patch, bsc#1206673 gh#python/cpython#17157 daniel.garcia@suse.com Patch53: CVE-2022-40899-ReDos-cookiejar.patch # PATCH-FIX-UPSTREAM CVE-2023-24329-blank-URL-bypass.patch bsc#1208471 mcepl@suse.com # blocklist bypass via the urllib.parse component when supplying # a URL that starts with blank characters Patch54: CVE-2023-24329-blank-URL-bypass.patch # PATCH-FIX-UPSTREAM bpo-44434-libgcc_s-for-pthread_cancel.patch bsc#1203355 mcepl@suse.com # don't run PyThread_exit_thread() when you don't have to Patch55: bpo-44434-libgcc_s-for-pthread_cancel.patch # PATCH-FIX-UPSTREAM 99366-patch.dict-can-decorate-async.patch bsc#[0-9]+ mcepl@suse.com # Patch for gh#python/cpython#98086 Patch56: 99366-patch.dict-can-decorate-async.patch # PATCH-FIX-OPENSUSE stack_overflow_test_endless_recursion.patch bpo#12051 mcepl@suse.com # test_endless_recursion.patch has a tendency to overflow a stack Patch57: stack_overflow_test_endless_recursion.patch # PATCH-FIX-UPSTREAM CVE-2023-27043-email-parsing-errors.patch bsc#1210638 mcepl@suse.com # Detect email address parsing errors and return empty tuple to # indicate the parsing error (old API) Patch58: CVE-2023-27043-email-parsing-errors.patch # PATCH-FIX-UPSTREAM CVE-2022-48564-DoS-read_ints-plistlib.patch bsc#1214677 mcepl@suse.com # Prevent DoS when processing malformed Apple Property List files in binary format Patch59: CVE-2022-48564-DoS-read_ints-plistlib.patch # PATCH-FIX-UPSTREAM CVE-2022-48565-plistlib-XML-vulns.patch bsc#1214685 mcepl@suse.com # Reject entity declarations in plists Patch60: CVE-2022-48565-plistlib-XML-vulns.patch # PATCH-FIX-UPSTREAM CVE-2022-48566-compare_digest-more-constant.patch bsc#1214691 mcepl@suse.com # Make compare_digest more constant-time Patch61: CVE-2022-48566-compare_digest-more-constant.patch # PATCH-FIX-UPSTREAM CVE-2023-6597-TempDir-cleaning-symlink.patch bsc#1219666 mcepl@suse.com # tempfile.TemporaryDirectory: fix symlink bug in cleanup (from gh#python/cpython!99930) Patch62: CVE-2023-6597-TempDir-cleaning-symlink.patch # PATCH-FIX-UPSTREAM CVE-2023-40217-avoid-ssl-pre-close.patch bsc#1214692 daniel.garcia@suse.com # backport from upstream patch gh#python/cpython#108315 Patch63: CVE-2023-40217-avoid-ssl-pre-close.patch # FIXME STILL NOT DEBUGGED, ESPECIALLY WITH PATH() COMPONENTS. # # PATCH-FIX-UPSTREAM CVE-2007-4559-filter-tarfile_extractall.patch bsc#1203750 mcepl@suse.com # # Implement PEP-706 to filter outcome of the tarball extracing # Patch63: CVE-2007-4559-filter-tarfile_extractall.patch # PATCH-FIX-UPSTREAM CVE-2023-52425-libexpat-2.6.0-backport.patch bsc#1219559 mcepl@suse.com # Make Python compatible with the new libexpat library. Patch64: CVE-2023-52425-libexpat-2.6.0-backport.patch # PATCH-FIX-UPSTREAM CVE-2024-0450-zipfile-avoid-quoted-overlap-zipbomb.patch bsc#1221854 mcepl@suse.com # detecting the vulnerability of the "quoted-overlap" zipbomb (from gh#python/cpython!110016). Patch65: CVE-2024-0450-zipfile-avoid-quoted-overlap-zipbomb.patch # PATCH-FIX-UPSTREAM CVE-2024-4032-private-IP-addrs.patch bsc#1226448 mcepl@suse.com # rearranging definition of private v global IP addresses Patch66: CVE-2024-4032-private-IP-addrs.patch # PATCH-FEATURE-UPSTREAM bpo24211-RFC6532-supp-email.patch mcepl@suse.com # one more compatibility patch Patch67: bpo24211-RFC6532-supp-email.patch # PATCH-FEATURE-UPSTREAM bpo27240-rewrite_email_hdr_fold.patch mcepl@suse.com # Rewrite the email header folding algorithm to make the code compatible with 3.6.4+ Patch68: bpo27240-rewrite_email_hdr_fold.patch Patch69: bpo20098-email-mangle_from-policy.patch # PATCH-FIX-UPSTREAM CVE-2024-6923-email-hdr-inject.patch bsc#1228780 mcepl@suse.com # encode newlines in headers, and verify headers are sound Patch70: CVE-2024-6923-email-hdr-inject.patch # PATCH-FIX-UPSTREAM CVE-2024-6232-ReDOS-backtrack-tarfile.patch bsc#1230227 mcepl@suse.com # preventing ReDos via excessive backtracking while parsing header values in tarfile Patch71: CVE-2024-6232-ReDOS-backtrack-tarfile.patch # PATCH-FIX-UPSTREAM CVE-2024-7592-quad-complex-cookies.patch bsc#1229596 mcepl@suse.com # Fix quadratic complexity in parsing "-quoted cookie values with backslashes by http.cookies Patch72: CVE-2024-7592-quad-complex-cookies.patch ### COMMON-PATCH-END ### ### COMMON-DEF-BEGIN ### # the versions are autogenerated from pre_checkin.sh # based on the current source tarball %define python_version 3.4 %define python_version_abitag 34 %define python_version_soname 3_4 %define sitedir %{_libdir}/python%{python_version} # three possible ABI kinds: m - pymalloc, d - debug build # see PEP 3149 %define abi_kind m # python ABI version - used in some file names %define python_abi %{python_version}%{abi_kind} # soname ABI tag defined in PEP 3149 %define abi_tag %{python_version_abitag}%{abi_kind} %define so_version %{python_version_soname}%{abi_kind}1_0 %define dynlib() %{sitedir}/lib-dynload/%{1}.cpython-%{abi_tag}.so ### COMMON-DEF-END ### Enhances: python3 = %{python_version} %description Tutorial, Global Module Index, Language Reference, Library Reference, Extending and Embedding Reference, Python/C API Reference, Documenting Python, and Macintosh Module Reference in HTML format. %package pdf Summary: Python PDF Documentation Group: Development/Languages/Python %description pdf Tutorial, Global Module Index, Language Reference, Library Reference, Extending and Embedding Reference, Python/C API Reference, Documenting Python, and Macintosh Module Reference in PDF format. Authors: -------- Guido van Rossum <guido@python.org> %prep %setup -q -n %{tarname} # for consistency ### COMMON-PREP-BEGIN ### %autopatch -p1 # For patch 34 cp -v %{SOURCE34} Lib/test/recursion.tar # drop Autoconf version requirement sed -i 's/^AC_PREREQ/dnl AC_PREREQ/' configure.ac # fix shebangs - convert /usr/local/bin/python and /usr/bin/env/python to /usr/bin/python3 for dir in Lib Tools; do # find *.py, filter to files that contain bad shebangs find $dir -name '*.py' -type f -print0 \ | xargs -0 grep -lE '^#! *(/usr/.*bin/(env +)?)?python' \ | xargs sed -r -i -e '1s@^#![[:space:]]*(/usr/(local/)?bin/(env +)?)?python([0-9]+(\.[0-9]+)?)?@#!/usr/bin/python3@' done ### COMMON-PREP-END ### %build TODAY_DATE=`date -r %{S:0} "+%B %d, %Y"` # TODO use not date of tarball but date of latest patch cd Doc sed -i "s/^today = .*/today = '$TODAY_DATE'/" conf.py make html make latex PAPER=a4 ( cd build/latex; make all-pdf ) mv build/latex build/paper-a4 make latex PAPER=letter ( cd build/latex; make all-pdf ) mv build/latex build/paper-letter %install export PDOCS=${RPM_BUILD_ROOT}%{_docdir}/python3 mkdir -p $PDOCS # generated docs pushd Doc rm build/html/.buildinfo cp -r build/html $PDOCS install -d -m 755 $PDOCS/paper-a4 cp build/paper-a4/*.pdf $PDOCS/paper-a4 install -d -m 755 $PDOCS/paper-letter cp build/paper-letter/*.pdf $PDOCS/paper-letter popd # misc install -d -m 755 $PDOCS/Misc rm Misc/README.AIX rm -vf Misc/*.orig for i in Misc/* ; do [ -f $i ] && install -c -m 644 $i $PDOCS/Misc/ done %clean rm -rf $RPM_BUILD_ROOT %files %dir %{_docdir}/python3 %doc %{_docdir}/python3/Misc %doc %{_docdir}/python3/html %files pdf %doc %{_docdir}/python3/paper-a4 %doc %{_docdir}/python3/paper-letter %changelog
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor