Sync from SUSE:SLFO:Main python-h11 revision a36bdfa52711a32274ca3b4b61a232c5

This commit is contained in:
2025-05-23 20:40:06 +02:00
parent f2d3fea258
commit 17e6355ee7
4 changed files with 34 additions and 11 deletions

BIN
h11-0.14.0.tar.gz (Stored with Git LFS)

Binary file not shown.

BIN
h11-0.16.0.tar.gz (Stored with Git LFS) Normal file

Binary file not shown.

View File

@@ -1,3 +1,25 @@
-------------------------------------------------------------------
Fri Apr 25 07:26:57 UTC 2025 - Daniel Garcia <daniel.garcia@suse.com>
- Update 0.16.0:
* Security fix (CVE-2025-43859, bsc#1241872)
Reject certain malformed Transfer-Encoding: chunked bodies that
were previously accepted. These could have enabled
request-smuggling attacks when an h11-based HTTP server was placed
behind a load balancer with a matching bug in its chunked
handling.
Advisory with more details:
https://github.com/python-hyper/h11/security/advisories/GHSA-vqfr-h8mv-ghfj
- 0.15.0:
* Reject Content-Lengths >= 1 zettabyte (1 billion terabytes) early,
without attempting to parse the integer (#181)
-------------------------------------------------------------------
Mon Jan 29 21:36:32 UTC 2024 - Dirk Müller <dmueller@suse.com>
- spec cleanup
-------------------------------------------------------------------
Fri Apr 21 12:25:58 UTC 2023 - Dirk Müller <dmueller@suse.com>
@@ -11,7 +33,7 @@ Thu Apr 13 22:41:44 UTC 2023 - Matej Cepl <mcepl@suse.com>
-------------------------------------------------------------------
Wed Oct 12 03:33:53 UTC 2022 - Yogalakshmi Arunachalam <yarunachalam@suse.com>
- Update to 0.14.0
- Update to 0.14.0
No upstream changelog
-------------------------------------------------------------------

View File

@@ -1,7 +1,7 @@
#
# spec file for package python-h11
#
# Copyright (c) 2023 SUSE LLC
# Copyright (c) 2025 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -16,17 +16,17 @@
#
%{?!python_module:%define python_module() python-%{**} python3-%{**}}
%define skip_python2 1
%{?sle15_python_module_pythons}
Name: python-h11
Version: 0.14.0
Version: 0.16.0
Release: 0
Summary: A pure-Python, bring-your-own-I/O implementation of HTTP/11
License: MIT
URL: https://github.com/python-hyper/h11
Source: https://files.pythonhosted.org/packages/source/h/h11/h11-%{version}.tar.gz
BuildRequires: %{python_module pip}
BuildRequires: %{python_module setuptools}
BuildRequires: %{python_module wheel}
BuildRequires: fdupes
BuildRequires: python-rpm-macros
BuildArch: noarch
@@ -43,10 +43,10 @@ heavily inspired by hyper-h2 <https://hyper-h2.readthedocs.io>
%setup -q -n h11-%{version}
%build
%python_build
%pyproject_wheel
%install
%python_install
%pyproject_install
%python_expand %fdupes %{buildroot}%{$python_sitelib}
%check
@@ -55,6 +55,7 @@ heavily inspired by hyper-h2 <https://hyper-h2.readthedocs.io>
%files %{python_files}
%doc README.rst
%license LICENSE.txt
%{python_sitelib}/*
%{python_sitelib}/h11
%{python_sitelib}/h11-%{version}.dist-info
%changelog