pool/python
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 919877 from devel:languages:python:Factory

Browse Source 
addressing CVE-2019-18348 (bpo#38576, bsc#1155094). Such
    potentially malicious header injection URLs now cause
    InvalidURL to be raised.

OBS-URL: https://build.opensuse.org/request/show/919877
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=157
This commit is contained in:
Dominique Leuenberger 2021-09-21 19:12:16 +00:00 committed by Git OBS Bridge
commit 9f95aebbf6
4 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
python-base.changes
View File

@ -76,8 +76,9 @@ Thu Apr 23 09:17:24 UTC 2020 - Matej Cepl <mcepl@suse.com>
- Fixed line numbers and column offsets for AST nodes for calls
without arguments in decorators.
- Disallow control characters in hostnames in http.client,
addressing CVE-2019-18348. Such potentially malicious header
injection URLs now cause a InvalidURL to be raised.
addressing CVE-2019-18348 (bpo#38576, bsc#1155094). Such
potentially malicious header injection URLs now cause
InvalidURL to be raised.
- Fix urllib.urlretrieve failing on subsequent ftp transfers
from the same host.
- Fix problems identified by GCC's -Wstringop-truncation

5
python-doc.changes
View File

@ -76,8 +76,9 @@ Thu Apr 23 09:17:24 UTC 2020 - Matej Cepl <mcepl@suse.com>
- Fixed line numbers and column offsets for AST nodes for calls
without arguments in decorators.
- Disallow control characters in hostnames in http.client,
addressing CVE-2019-18348. Such potentially malicious header
injection URLs now cause a InvalidURL to be raised.
addressing CVE-2019-18348 (bpo#38576, bsc#1155094). Such
potentially malicious header injection URLs now cause
InvalidURL to be raised.
- Fix urllib.urlretrieve failing on subsequent ftp transfers
from the same host.
- Fix problems identified by GCC's -Wstringop-truncation

2
python-doc.spec
View File

@ -186,13 +186,13 @@ Python, and Macintosh Module Reference in PDF format.
# drop Autoconf version requirement
sed -i 's/^version_required/dnl version_required/' configure.ac
# COMMON-PREP-END
# Update documentation formatting for Sphinx 3.0 (bpo#40204)
for i in `find Doc/ -type f -name "*.rst"`
do
sed -i 's/:c:type:/:c:expr:/g' $i
done
# COMMON-PREP-END
%build
TODAY_DATE=`date -r %{S:0} "+%B %d, %Y"`

5
python.changes
View File

@ -76,8 +76,9 @@ Thu Apr 23 09:17:24 UTC 2020 - Matej Cepl <mcepl@suse.com>
- Fixed line numbers and column offsets for AST nodes for calls
without arguments in decorators.
- Disallow control characters in hostnames in http.client,
addressing CVE-2019-18348. Such potentially malicious header
injection URLs now cause a InvalidURL to be raised.
addressing CVE-2019-18348 (bpo#38576, bsc#1155094). Such
potentially malicious header injection URLs now cause
InvalidURL to be raised.
- Fix urllib.urlretrieve failing on subsequent ftp transfers
from the same host.
- Fix problems identified by GCC's -Wstringop-truncation