From 4d7b79b3962244c488194e91cefa599e164efee2f92f0046fed7f80de9f1ce48 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= Date: Fri, 30 Aug 2024 15:32:55 +0200 Subject: [PATCH] Sync from SUSE:SLFO:Main python-WebOb revision 3105d159e94a2bc99ef4a4aff2c139e5 --- WebOb-1.8.7.tar.gz | 3 --- python-WebOb.changes | 10 ++++++++++ python-WebOb.spec | 27 +++++++++------------------ webob-1.8.8.tar.gz | 3 +++ 4 files changed, 22 insertions(+), 21 deletions(-) delete mode 100644 WebOb-1.8.7.tar.gz create mode 100644 webob-1.8.8.tar.gz diff --git a/WebOb-1.8.7.tar.gz b/WebOb-1.8.7.tar.gz deleted file mode 100644 index 3206ffe..0000000 --- a/WebOb-1.8.7.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:b64ef5141be559cfade448f044fa45c2260351edcb6a8ef6b7e00c7dcef0c323 -size 278544 diff --git a/python-WebOb.changes b/python-WebOb.changes index 00e29f1..d9a752c 100644 --- a/python-WebOb.changes +++ b/python-WebOb.changes @@ -1,3 +1,13 @@ +------------------------------------------------------------------- +Mon Aug 19 03:28:33 UTC 2024 - Steve Kowalik + +- Update to 1.8.8: + * The use of WebOb's Response object to redirect a request to a new location + can lead to an open redirect if the Location header is not a full URI. + (bsc#1229221, CVE-2024-42353) +- Drop Python 2 blocks in the spec file. +- Switch to pyproject macros. + ------------------------------------------------------------------- Wed Jul 26 07:20:55 UTC 2023 - Bernhard Wiedemann diff --git a/python-WebOb.spec b/python-WebOb.spec index 82b50d7..035de84 100644 --- a/python-WebOb.spec +++ b/python-WebOb.spec @@ -1,7 +1,7 @@ # # spec file for package python-WebOb # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -18,27 +18,21 @@ %{?sle15_python_module_pythons} Name: python-WebOb -Version: 1.8.7 +Version: 1.8.8 Release: 0 Summary: WSGI request and response object License: MIT -Group: Development/Languages/Python URL: http://webob.org/ -Source: https://files.pythonhosted.org/packages/source/W/WebOb/WebOb-%{version}.tar.gz +Source: https://files.pythonhosted.org/packages/source/w/webob/webob-%{version}.tar.gz +BuildRequires: %{python_module pip} BuildRequires: %{python_module pytest} BuildRequires: %{python_module setuptools} +BuildRequires: %{python_module wheel} BuildRequires: python-rpm-macros # Documentation requirements: BuildRequires: fdupes BuildRequires: python3-Sphinx BuildArch: noarch -%ifpython2 -# We need SSL support -BuildRequires: python3 -Requires: python3 -Obsoletes: python3-webob < %{version} -Provides: python3-webob = %{version} -%endif %python_subpackages %description @@ -52,7 +46,6 @@ environment. %if 0%{?suse_version} > 1500 %package -n python-WebOb-doc Summary: WSGI request and response object - Documentation -Group: Documentation/HTML Provides: %{python_module WebOb-doc = %{version}} %description -n python-WebOb-doc @@ -60,16 +53,14 @@ This package contains documentation files for %{name}. %endif %prep -%setup -q -n WebOb-%{version} -# gh#Pylons/webob#390 -- Thread.is_alive is present since Python 2.6, Thread.isAlive was removed in 3.9. -sed -i 's/worker.isAlive/worker.is_alive/' tests/conftest.py +%setup -q -n webob-%{version} %build -%python_build +%pyproject_wheel PYTHONPATH=./src sphinx-build -b html docs build/sphinx/html && rm -r build/sphinx/html/.{buildinfo,doctrees} %install -%python_install +%pyproject_install %python_expand %fdupes %{buildroot}%{$python_sitelib} %check @@ -79,7 +70,7 @@ PYTHONPATH=./src sphinx-build -b html docs build/sphinx/html && rm -r build/sphi %license docs/license.txt %doc CHANGES.txt README.rst %{python_sitelib}/webob -%{python_sitelib}/WebOb-%{version}*-info +%{python_sitelib}/WebOb-%{version}.dist-info %if 0%{?suse_version} > 1500 %files -n python-WebOb-doc diff --git a/webob-1.8.8.tar.gz b/webob-1.8.8.tar.gz new file mode 100644 index 0000000..a4bb335 --- /dev/null +++ b/webob-1.8.8.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:2abc1555e118fc251e705fc6dc66c7f5353bb9fbfab6d20e22f1c02b4b71bcee +size 279035