dgarcia/python313
SHA256
1
0
Fork 0
forked from pool/python313
Code Pull Requests Activity

Commit Graph

  • 002a9e718d Sync with devel:languages:python:Factory main Daniel Garcia Moreno 2025-10-01 11:01:36 +02:00
  • b1df85c06b Accepting request 1299833 from devel:languages:python:Factory factory Ana Guerrero 2025-08-21 14:47:12 +00:00
  • 3dc0e87868 Sync from SUSE:SLFO:Main python313 revision 1344033085c30612f3de7a4751d95c0c slfo-main slfo-1.2 Adrian Schröter 2025-08-19 16:39:27 +02:00
  • 357ebef973 - Update to 3.13.7: - gh-137583: Fix a deadlock introduced in 3.13.6 when a call to ssl.SSLSocket.recv was blocked in one thread, and then another method on the object (such as ssl.SSLSocket.send) was subsequently called in another thread. - gh-137044: Return large limit values as positive integers instead of negative integers in resource.getrlimit(). Accept large values and reject negative values (except RLIM_INFINITY) for limits in resource.setrlimit(). - gh-136914: Fix retrieval of doctest.DocTest.lineno for objects decorated with functools.cache() or functools.cached_property. - gh-131788: Make ResourceTracker.send from multiprocessing re-entrant safe - gh-136155: We are now checking for fatal errors in EPUB builds in CI. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - Remove upstreamed patch: - gh137583-only-lock-SSL-context.patch devel Matej Cepl 2025-08-15 12:33:36 +00:00
  • d870c1b0f4 REfresh the patch Matej Cepl 2025-08-12 22:07:14 +00:00
  • 4fd7821bea - Add gh137583-only-lock-SSL-context.patch fixing the regression in 3.13.6 by breaking non-blocking TLS connections (gh#python/cpython#137583). Matej Cepl 2025-08-12 09:37:56 +00:00
  • 816e164be8 declarations are automatically closed, tags are ignored (CVE-2025-6069, bsc#1244705). - Remove upstreamed patches: - CVE-2025-8194-tarfile-no-neg-offsets.patch - CVE-2025-6069-quad-complex-HTMLParser.patch Matej Cepl 2025-08-07 10:56:04 +00:00
  • 978bc1ef01 - Update to 3.13.6: Python 3.13.6 final Release date: 2025-08-06 - Tools/Demos - gh-135968: Stubs for strip are now provided as part of an iOS install. - Tests - gh-135966: The iOS testbed now handles the app_packages folder as a site directory. - gh-135494: Fix regrtest to support excluding tests from --pgo tests. Patch by Victor Stinner. - gh-135489: Show verbose output for failing tests during PGO profiling step with –enable-optimizations. - Security - gh-135661: Fix parsing start and end tags in html.parser.HTMLParser according to the HTML5 standard. - Whitespaces no longer accepted between </ and the tag name. E.g. </ script> does not end the script section. - Vertical tabulation (\v) and non-ASCII whitespaces no longer recognized as whitespaces. The only whitespaces are \t\n\r\f and space. - Null character (U+0000) no longer ends the tag name. - Attributes and slashes after the tag name in end tags are now ignored, instead of terminating after the first > in quoted attribute value. E.g. </script/foo=">"/>. - Multiple slashes and whitespaces between the last attribute and closing > are now ignored in both start and end tags. E.g. <a foo=bar/ //>. - Multiple = between attribute name and value are no longer collapsed. E.g. <a foo==bar> produces attribute Matej Cepl 2025-08-07 10:16:41 +00:00
  • 976c4e0cef Accepting request 1297126 from devel:languages:python:Factory Dominique Leuenberger 2025-08-04 13:22:18 +00:00
  • 871f5c3f10 - Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now validates archives to ensure member offsets are non-negative (gh#python/cpython#130577, CVE-2025-8194, bsc#1247249). Matej Cepl 2025-08-01 20:14:12 +00:00
  • 37d407017e Accepting request 1294512 from devel:languages:python:Factory Ana Guerrero 2025-07-20 13:28:48 +00:00
  • 5ef0b0ecff Sync from SUSE:SLFO:Main python313 revision 13c51d6d24a5108bc9042a7d6fb5aeb4 Adrian Schröter 2025-07-18 11:40:31 +02:00
  • 92b79e3223 - Fix gil/nogil package description, bsc#1246229 Daniel Garcia 2025-07-10 10:18:09 +00:00
  • 3a1acd0d11 - Add CVE-2025-6069-quad-complex-HTMLParser.patch to avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser (CVE-2025-6069, bsc#1244705). Matej Cepl 2025-07-02 14:51:36 +00:00
  • adca6dee9d - Add bsc1243155-sphinx-non-determinism.patch (bsc#1243155) to generate ids for audit_events using docname (reproducible builds). Matej Cepl 2025-07-02 13:52:43 +00:00
  • 2abd69687b Accepting request 1289841 from home:dgarcia:branches:devel:languages:python:Factory Matej Cepl 2025-07-02 11:27:27 +00:00
  • 6fe6053eb5 Sync from SUSE:SLFO:Main python313 revision f3fded152e9ee7e3c3e8a86fe18815c2 Adrian Schröter 2025-06-27 16:00:14 +02:00
  • 9a9b32e012 Accepting request 1288597 from devel:languages:python:Factory Ana Guerrero 2025-06-26 09:38:02 +00:00
  • 07a0902464 Add link to bsc#1244061 to changelog. Matej Cepl 2025-06-25 19:43:42 +00:00
  • 0bf1e0de48 Accepting request 1287762 from devel:languages:python:Factory Ana Guerrero 2025-06-24 18:45:07 +00:00
  • eb5e4cd13f - Substantially rewritten doc-py38-to-py36.patch patch to be more flexible and covering even unexpected changes. Matej Cepl 2025-06-22 19:29:14 +00:00
  • a5239f3134 Accepting request 1287576 from home:msmeissn:branches:devel:languages:python:Factory Matej Cepl 2025-06-22 16:37:53 +00:00
  • eaae274dc4 - Update to 3.13.5: - Tests - gh-135120: Add test.support.subTests(). - Library - gh-133967: Do not normalize locale name ‘C.UTF-8’ to ‘en_US.UTF-8’. - gh-135326: Restore support of integer-like objects with __index__() in random.getrandbits(). - gh-135321: Raise a correct exception for values greater than 0x7fffffff for the BINSTRING opcode in the C implementation of pickle. - gh-135276: Backported bugfixes in zipfile.Path from zipp 3.23. Fixed .name, .stem and other basename-based properties on Windows when working with a zipfile on disk. - gh-134151: email: Fix TypeError in email.utils.decode_params() when sorting RFC 2231 continuations that contain an unnumbered section. - gh-134152: email: Fix parsing of email message ID with invalid domain. - gh-127081: Fix libc thread safety issues with os by replacing getlogin with getlogin_r re-entrant version. - gh-131884: Fix formatting issues in json.dump() when both indent and skipkeys are used. - Core and Builtins - gh-135171: Roll back changes to generator and list comprehensions that went into 3.13.4 to fix gh-127682, but which involved semantic and bytecode changes not appropriate for a bugfix release. - C API - gh-134989: Fix Py_RETURN_NONE, Py_RETURN_TRUE and Matej Cepl 2025-06-11 22:06:33 +00:00
  • 719d910757 Add missing import Matej Cepl 2025-06-10 01:23:49 +00:00
  • 836ffcda65 - Update to 3.13.4: - Security - gh-135034: Fixes multiple issues that allowed tarfile extraction filters (filter="data" and filter="tar") to be bypassed using crafted symlinks and hard links. Addresses CVE-2024-12718 (bsc#1244056), CVE-2025-4138 (bsc#1244059), CVE-2025-4330 (bsc#1244060), and CVE-2025-4517 (bsc#1244032). - gh-133767: Fix use-after-free in the “unicode-escape” decoder with a non-“strict” error handler (CVE-2025-4516, bsc#1243273). - gh-128840: Short-circuit the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor denial-of-service. - Library - gh-134718: ast.dump() now only omits None and [] values if they are default values. - gh-128840: Fix parsing long IPv6 addresses with embedded IPv4 address. - gh-134696: Built-in HACL* and OpenSSL implementations of hash function constructors now correctly accept the same documented named arguments. For instance, md5() could be previously invoked as md5(data=data) or md5(string=string) depending on the underlying implementation but these calls were not compatible. Patch by Bénédikt Tran. - gh-134210: curses.window.getch() now correctly handles signals. Patch by Bénédikt Tran. - gh-80334: multiprocessing.freeze_support() now checks for work on any “spawn” start method platform rather than only on Windows. Matej Cepl 2025-06-09 21:38:15 +00:00
  • dc9a88a0ec Accepting request 1281135 from devel:languages:python:Factory Dominique Leuenberger 2025-06-01 19:36:01 +00:00
  • a10fb63256 - Don't use %elif, it is supported only from rpm 4.15.0, which is not in SLE-15. Matej Cepl 2025-05-28 09:47:26 +00:00
  • b8ba5ea90c Sync from SUSE:SLFO:Main python313 revision 383b9a75c226d18ca6d663c7a0c8c962 Adrian Schröter 2025-05-23 20:41:08 +02:00
  • e4f03691c0 Accepting request 1278136 from devel:languages:python:Factory Ana Guerrero 2025-05-23 12:26:37 +00:00
  • 3def3a278d - Add CVE-2025-4516-DecodeError-handler.patch fixing CVE-2025-4516 (bsc#1243273) blocking DecodeError handling vulnerability, which could lead to DoS. Matej Cepl 2025-05-17 07:34:05 +00:00
  • 6ccd98d9bb Accepting request 1276664 from devel:languages:python:Factory Ana Guerrero 2025-05-13 18:05:26 +00:00
  • 9ca0c40ae3 - Remove python-3.3.0b1-test-posix_fadvise.patch (not needed since kernel 3.6-rc1) Matej Cepl 2025-05-10 11:43:36 +00:00
  • 395f30367f Accepting request 1270150 from devel:languages:python:Factory Ana Guerrero 2025-04-25 20:17:50 +00:00
  • 82f875fb14 Sync from SUSE:SLFO:Main python313 revision 5d4062f27189f9d44beb46048ef6cfe5 Adrian Schröter 2025-04-25 01:03:29 +02:00
  • 6efef2d138 This Matej Cepl 2025-04-16 07:52:47 +00:00
  • d2b706c283 Fix patches Matej Cepl 2025-04-16 07:17:38 +00:00
  • 6b8c3a8e15 - Add gh-126500-test_ssl-no-stop-ThreadedEchoServer-OSError.patch and gh-127257-ssl-OSError-ERR_LIB_SYS.patch to make the interpreter compatible with OpenSSL 3.5 (bsc#1241067). Matej Cepl 2025-04-16 07:15:35 +00:00
  • e09d046cb9 - Add gh-132535-rsrc-warn-test_timeout.patch to fix failing tests in the build system without network access (gh#python/cpython#132535). Matej Cepl 2025-04-15 22:19:57 +00:00
  • 8966bd89d2 - Add gh126985-mv-pyvenv.cfg2getpath.patch to remove failing tests in test_sysconfig. Matej Cepl 2025-04-15 14:09:42 +00:00
  • 30fabf621d - Update to 3.13.3: - Tools/Demos - gh-131852: msgfmt no longer adds the POT-Creation-Date to generated .mo files for consistency with GNU msgfmt. - gh-85012: Correctly reset msgctxt when compiling messages in msgfmt. - gh-130025: The iOS testbed now correctly handles symlinks used as Python framework references. - Tests - gh-131050: test_ssl.test_dh_params is skipped if the underlying TLS library does not support finite-field ephemeral Diffie-Hellman. - gh-129200: Multiple iOS testbed runners can now be started at the same time without introducing an ambiguity over simulator ownership. - gh-130292: The iOS testbed will now run successfully on a machine that has not previously run Xcode tests (such as CI configurations). - gh-130293: The tests of terminal colorization are no longer sensitive to the value of the TERM variable in the testing environment. - gh-126332: Add unit tests for pyrepl. - Security - gh-131809: Update bundled libexpat to 2.7.1 - gh-131261: Upgrade to libexpat 2.7.0 - gh-127371: Avoid unbounded buffering for tempfile.SpooledTemporaryFile.writelines(). Previously, disk spillover was only checked after the lines iterator had been exhausted. This is now done after each line is written. Matej Cepl 2025-04-11 19:56:43 +00:00
  • d1dd8decb1 revert Matej Cepl 2025-04-11 06:10:15 +00:00
  • 1a9b96ab31 Sync from SUSE:SLFO:Main python313 revision d0dfd4215089a37af0ae2e0812cb62c5 Adrian Schröter 2025-03-21 10:53:19 +01:00
  • 4e7fbe78f1 Accepting request 1253127 from devel:LoongArch:Factory Matej Cepl 2025-03-14 22:57:44 +00:00
  • 6c5ffdb7d1 Accepting request 1251953 from devel:languages:python:Factory Ana Guerrero 2025-03-12 14:19:55 +00:00
  • fb81f0c95c Fix bug reference in the changelog Matej Cepl 2025-03-11 06:50:29 +00:00
  • 7697c02d21 Fix bug reference in the changelog Matej Cepl 2025-03-11 06:15:52 +00:00
  • 12f6ddbda4 - Skip PGO with %want_reproducible_builds (boo#1040589) Matej Cepl 2025-03-10 18:35:58 +00:00
  • 8412211e61 Accepting request 1250305 from devel:languages:python:Factory Ana Guerrero 2025-03-06 13:47:53 +00:00
  • 3375f039d6 - Do not build with experimental_jit when primary_python Markéta Machová 2025-03-05 06:27:41 +00:00
  • d4d0782687 Sync from SUSE:SLFO:Main python313 revision 3a4e5c994aa27bd66e968be481da9eb4 Adrian Schröter 2025-02-25 19:38:36 +01:00
  • 45096711fd Accepting request 1243939 from devel:languages:python:Factory Dominique Leuenberger 2025-02-09 18:58:56 +00:00
  • 3ab9737306 - Add doc-py38-to-py36.patch to make documentation buildable on SLE with older Sphinx. Matej Cepl 2025-02-05 16:42:08 +00:00
  • 47d752bbc6 - Update to 3.13.2: - Tools/Demos - gh-128152: Fix a bug where Argument Clinic’s C pre-processor parser tried to parse pre-processor directives inside C comments. Patch by Erlend Aasland. - Tests - gh-127906: Test the limited C API in test_cppext. Patch by Victor Stinner. - gh-127637: Add tests for the dis command-line interface. Patch by Bénédikt Tran. - gh-126925: iOS test results are now streamed during test execution, and the deprecated xcresulttool is no longer used. - Security - gh-105704: When using urllib.parse.urlsplit() and urllib.parse.urlparse() host parsing would not reject domain names containing square brackets ([ and ]). Square brackets are only valid for IPv6 and IPvFuture hosts according to RFC 3986 Section 3.2.2. (CVE-2025-0938, bsc#1236705) - gh-127655: Fixed the asyncio.selector_events._SelectorSocketTransport transport not pausing writes for the protocol when the buffer reaches the high water mark when using asyncio.WriteTransport.writelines() (CVE-2024-12254, bsc#1234290). - gh-126108: Fix a possible NULL pointer dereference in PySys_AddWarnOptionUnicode(). - gh-80222: Fix bug in the folding of quoted strings when flattening an email message using a modern email Matej Cepl 2025-02-05 09:57:45 +00:00
  • 12d36f6d19 Accepting request 1241509 from devel:languages:python:Factory Ana Guerrero 2025-02-03 20:40:34 +00:00
  • cf22122d9a - Configure externally_managed with a bcond https://en.opensuse.org/openSUSE:Python:Externally_managed bsc#1228165 Matej Cepl 2025-01-30 17:35:22 +00:00
  • 7775db5668 Accepting request 1228971 from devel:languages:python:Factory Ana Guerrero 2025-01-23 16:57:00 +00:00
  • 1faa76760c Sync from SUSE:SLFO:Main python313 revision 3939dadd6bf1a800644b15d384da5806 Adrian Schröter 2024-12-20 16:09:47 +01:00
  • 1a68b995e6 - Add CVE-2024-12254-unbound-mem-buffering-SelectorSocketTransport.writelines.patch preventing exhaustion of memory (gh#python/cpython#127655, bsc#1234290, CVE-2024-12254). Matej Cepl 2024-12-06 20:46:56 +00:00
  • a5731deb52 Update patches Matej Cepl 2024-12-06 13:01:45 +00:00
  • d4c1e47d44 - Update to 3.13.1: - Tools/Demos - gh-126807: Fix extraction warnings in pygettext.py caused by mistaking function definitions for function calls. - gh-126167: The iOS testbed was modified so that it can be used by third-party projects for testing purposes. - Tests - gh-126909: Fix test_os extended attribute tests to work on filesystems with 1 KiB xattr size limit. - gh-125041: Re-enable skipped tests for zlib on the s390x architecture: only skip checks of the compressed bytes, which can be different between zlib’s software implementation and the hardware-accelerated implementation. - gh-124295: Add translation tests to the argparse module. - Security - gh-126623: Upgrade libexpat to 2.6.4 - gh-125140: Remove the current directory from sys.path when using PyREPL. - gh-122792: Changed IPv4-mapped ipaddress.IPv6Address to consistently use the mapped IPv4 address value for deciding properties. Properties which have their behavior fixed are is_multicast, is_reserved, is_link_local, is_global, and is_unspecified. - Library - gh-127321: pdb.set_trace() will not stop at an opcode that does not have an associated line number anymore. - gh-127303: Publicly expose EXACT_TOKEN_TYPES in token.__all__. - gh-123967: Fix faulthandler for trampoline frames. If the top-most frame is a trampoline frame, skip it. Patch by Matej Cepl 2024-12-04 22:01:51 +00:00
  • b7339fbd1a Sync from SUSE:SLFO:Main python313 revision 8e47fdd964e0cf538aa6655838a42add Adrian Schröter 2024-12-04 09:25:36 +01:00
  • 03c870434a Accepting request 1227320 from devel:languages:python:Factory Ana Guerrero 2024-11-30 12:27:29 +00:00
  • abfd0ea83d Accepting request 1227315 from home:dgarcia:branches:devel:languages:python:Factory Daniel Garcia 2024-11-29 12:38:51 +00:00
  • e5ccabe5d6 Accepting request 1224887 from devel:languages:python:Factory Ana Guerrero 2024-11-18 18:57:22 +00:00
  • 45b3270bb2 hard-coded LLVM_version in the scripts. Markéta Machová 2024-11-18 14:04:00 +00:00
  • 8ea0be1078 - Allow building with default LLVM version 19: just replace the hard-coded LLVM_version in the scrpts. Markéta Machová 2024-11-18 13:48:03 +00:00
  • 5017722c2b - Require exact clang18 and llvm18, because apparently CPython is not ready for 19 yet (gh#python/cpython!125499). Matej Cepl 2024-11-14 17:26:42 +00:00
  • b4ab74738f - Remove -IVendor/ from python-config boo#1231795 Matej Cepl 2024-11-14 16:11:33 +00:00
  • 07a89b44e8 Accepting request 1218353 from devel:languages:python:Factory Ana Guerrero 2024-10-27 10:24:54 +00:00
  • 162040ca05 - Add CVE-2024-9287-venv_path_unquoted.patch to properly quote path names provided when creating a virtual environment (bsc#1232241, CVE-2024-9287) Matej Cepl 2024-10-25 14:01:31 +00:00
  • d35133fd4e Accepting request 1208371 from devel:languages:python:Factory Ana Guerrero 2024-10-16 21:49:58 +00:00
  • 537e68d716 - With python311-Sphinx we don't need no-skipif-doctests.patch any more. Matej Cepl 2024-10-16 07:27:11 +00:00
  • a53af73990 - Add warning about no-GIL builds being experimental. Matej Cepl 2024-10-10 11:18:53 +00:00
  • 1e2a0f61a9 Accepting request 1206252 from devel:languages:python:Factory Ana Guerrero 2024-10-08 15:24:58 +00:00
  • a5a443b789 - Update to 3.13.0: Major new features of the 3.13 series, compared to 3.12 Some of the new major new features and changes in Python 3.13 are: - New features - A new and improved interactive interpreter, based on PyPy's, featuring multi-line editing and color support, as well as colorized exception tracebacks. - An experimental free-threaded build mode, which disables the Global Interpreter Lock, allowing threads to run more concurrently. The build mode is available as an experimental feature in the Windows and macOS installers as well. - A preliminary, experimental JIT, providing the ground work for significant performance improvements. - The locals() builtin function (and its C equivalent) now has well-defined semantics when mutating the returned mapping, which allows debuggers to operate more consistently. - A modified version of mimalloc is now included, optional but enabled by default if supported by the platform, and required for the free-threaded build mode. - Docstrings now have their leading indentation stripped, reducing memory use and the size of .pyc files. (Most tools handling docstrings already strip leading indentation.) - The dbm module has a new dbm.sqlite3 backend that is used by default when creating new files. - WASI is now a Tier 2 supported platform. Emscripten is no longer an officially supported platform (but Pyodide continues to support Emscripten). - Typing Matej Cepl 2024-10-08 07:14:30 +00:00
  • 32830d09d0 Accepting request 1205550 from devel:languages:python:Factory Ana Guerrero 2024-10-04 15:10:27 +00:00
  • d4b9fa2439 Fix the changelog Matej Cepl 2024-10-03 15:03:11 +00:00
  • e781d820b1 Accepting request 1205032 from devel:languages:python:Factory Ana Guerrero 2024-10-02 19:33:43 +00:00
  • 78ba84f9b1 Fix the command Matej Cepl 2024-10-01 23:47:53 +00:00
  • 0da0cdfdf4 - Update to 3.13.0~rc3: - The most important change is rolling back the incremental cyclic garbage collector (GC), which was added in one of the alpha releases. The incremental GC had more significant performance regressions in specific workloads than we expected. - Tests - gh-124378: Updated test_ttk to pass with Tcl/Tk 8.6.15. - Library - gh-124538: Fixed crash when using gc.get_referents() on a capsule object. - gh-124498: Fix typing.TypeAliasType not to be generic, when type_params is an empty tuple. - gh-123017: Due to unreliable results on some devices, time.strftime() no longer accepts negative years on Android. - gh-123014: os.pidfd_open() and signal.pidfd_send_signal() are now unavailable when building against Android API levels older than 31, since the underlying system calls may cause a crash. - gh-124248: Fixed potential crash when using struct to process zero-width ‘Pascal string’ fields (0p). - gh-87041: Fix a bug in argparse where lengthy subparser argument help is incorrectly indented. - gh-124212: Fix invalid variable in venv handling of failed symlink on Windows - gh-124171: Add workaround for broken fmod() implementations on Windows, that loose zero sign (e.g. fmod(-10, 1) returns 0.0). Patch by Sergey B Kirpichev. - gh-123934: Fix unittest.mock.MagicMock reseting magic Matej Cepl 2024-10-01 15:47:09 +00:00
  • 888af93a0c Accepting request 1202221 from devel:languages:python:Factory Ana Guerrero 2024-09-22 09:05:57 +00:00
  • 308255a772 - Make it build for SLE SP7 (jsc#PED-10075): - Add CVE-2023-52425-libexpat-2.6.0-backport-15.6.patch to build in SLE-15-SP7. - Add fix-test-recursion-limit-15.6.patch, gh#python/cpython#115083 - Add gh-124040-fix-test-math-i586.patch, gh#python/cpython#124042 Matej Cepl 2024-09-20 13:41:16 +00:00
  • a3ff8ce797 Accepting request 1199398 from devel:languages:python:Factory Ana Guerrero 2024-09-09 12:43:49 +00:00
  • 608d0c1bfd - Also in the corresponding ipaddress.IPv4Network and ipaddress.IPv6Network attributes. - Fixes bsc#1226448 (CVE-2024-4032). Stinner to improve the CVE-2023-27043 fix (bsc#1210638). Matej Cepl 2024-09-07 19:39:36 +00:00
  • 48b8355786 - Update to 3.13.0~rc2: - Tools/Demos - gh-123418: Update GitHub CI workflows to use OpenSSL 3.0.15 and multissltests to use 3.0.15, 3.1.7, and 3.2.3. - Tests - gh-119727: Add --single-process command line option to Python test runner (regrtest). Patch by Victor Stinner. - gh-101525: Skip test_gdb if the binary is relocated by BOLT. Patch by Donghee Na. - Security - gh-123678: Upgrade libexpat to 2.6.3 - gh-121285: Remove backtracking from tarfile header parsing for hdrcharset, PAX, and GNU sparse headers (bsc#1230227, CVE-2024-6232). - Library - gh-123448: Fixed memory leak of typing.NoDefault by moving it to the static types array. - gh-123409: Fix ipaddress.IPv6Address.reverse_pointer output according to RFC 3596, §2.5. Patch by Bénédikt Tran. - gh-123270: Applied a more surgical fix for malformed payloads in zipfile.Path causing infinite loops (gh-122905) without breaking contents using legitimate characters (bsc#1229704, CVE-2024-8088). - gh-123228: Fix return type for _pyrepl.readline._ReadlineWrapper.get_line_buffer() to be str(). Patch by Sergey B Kirpichev. - gh-123240: Raise audit events for the input() in the new REPL. - gh-123243: Fix memory leak in _decimal. - gh-122546: Consistently use same file name for different Matej Cepl 2024-09-07 16:06:08 +00:00
  • 4352698329 - Build experimental package python313-nogil with --disable-gil option. Matej Cepl 2024-09-06 21:07:58 +00:00
  • 001d1a2a20 Remove Modules/expat Matej Cepl 2024-09-03 15:45:42 +00:00
  • 6787a9f29d - Add gh120226-fix-sendfile-test-kernel-610.patch to avoid failing test_sendfile_close_peer_in_the_middle_of_receiving tests on Linux >= 6.10 (GH-120227). Matej Cepl 2024-09-02 10:20:54 +00:00
  • 1221d1c8e1 Accepting request 1197482 from devel:languages:python:Factory Dominique Leuenberger 2024-08-30 11:32:00 +00:00
  • 59a4965535 - Add gh122136-test_asyncio-kernel-buffer-data.patch fixing gh#python/cpython#122136 (changes in kernel provide different amount of data in the socket buffers). - Remove skip_test_abort_clients.patch, which is not needed any more. Matej Cepl 2024-08-29 14:47:46 +00:00
  • 0a0564a0e9 - Add CVE-2024-8088-inf-loop-zipfile_Path.patch to prevent malformed payload to cause infinite loops in zipfile.Path (bsc#1229704, CVE-2024-8088). Matej Cepl 2024-08-29 13:03:32 +00:00
  • c7b43c0f60 Accepting request 1193120 from devel:languages:python:Factory Dominique Leuenberger 2024-08-10 17:08:14 +00:00
  • b97ac57404 - Update list of skipped tests in qemu linux-user emulation Matej Cepl 2024-08-10 09:21:55 +00:00
  • 041b675fd8 Accepting request 1192376 from devel:languages:python:Factory Dominique Leuenberger 2024-08-08 08:58:35 +00:00
  • 5886778811 Fix the changelog Matej Cepl 2024-08-07 21:42:22 +00:00
  • 11a8661cb2 - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. Matej Cepl 2024-08-07 18:01:20 +00:00
  • 1ef6a75b82 - Add CVE-2024-6923-email-hdr-inject.patch to prevent email header injection due to unquoted newlines (bsc#1228780, CVE-2024-6923). - %{profileopt} variable is set according to the variable %{do_profiling} (bsc#1227999) Matej Cepl 2024-08-07 14:51:11 +00:00
  • 74a0bc0ca2 - Update bluez-devel-vendor.tar.xz Matej Cepl 2024-08-07 13:41:11 +00:00
  • b1061c18e5 Add skip_test_abort_clients.patch to avoid failing test (gh#python/cpython#122136) Matej Cepl 2024-08-07 13:34:52 +00:00
  • b154095872 - Update to 3.13.0~rc1: - Tests - gh-59022: Add tests for pkgutil.extend_path(). Patch by Andreas Stocker. - gh-99242: os.getloadavg() may throw OSError when running regression tests under certain conditions (e.g. chroot). This error is now caught and ignored, since reporting load average is optional. - Security - gh-122133: Authenticate the socket connection for the socket.socketpair() fallback on platforms where AF_UNIX is not available like Windows. - Patch by Gregory P. Smith <greg@krypto.org> and Seth Larson <seth@python.org>. Reported by Ellie <el@horse64.org> - gh-121957: Fixed missing audit events around interactive use of Python, now also properly firing for python -i, as well as for python -m asyncio. The events in question are cpython.run_stdin and cpython.run_startup. - Library - gh-122400: Handle ValueErrors raised by os.stat() in filecmp.dircmp and filecmp.cmpfiles(). Patch by Bénédikt Tran. - gh-122311: Fix some error messages in pickle. - gh-122332: Fixed segfault with asyncio.Task.get_coro() when using an eager task factory. - gh-105733: ctypes.ARRAY() is now soft deprecated: it no longer emits deprecation warnings and is not scheduled for removal. - gh-122087: Restore inspect.ismethoddescriptor() and inspect.isroutine() returning False for functools.partial Matej Cepl 2024-08-01 10:42:44 +00:00