pool/python
SHA256
3
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
282 Commits 2 Branches 0 Tags 3.7 MiB
3095c8247c
Commit Graph

282 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Matej Cepl
3095c8247c - Fix the application of the python-2.7.17-switch-off-failing-SSL-tests.patch. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=369
 2023-06-07 15:44:38 +00:00
Matej Cepl
3c4cd74d92 Run pre_checkin.sh 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=368
 2023-06-07 10:42:55 +00:00
Matej Cepl
b0f5b812cb Fix application of the patch 57 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=367
 2023-06-07 10:04:43 +00:00
Matej Cepl
55461311b5 Remove silly comment in the changelog 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=366
 2023-06-06 10:29:31 +00:00
Matej Cepl
6f83c920d0 No nis.so on Tumbleweed 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=365
 2023-06-03 09:15:51 +00:00
Matej Cepl
78634bafca Accepting request 1089783 from home:Andreas_Schwab:Factory 
- python-2.7.5-multilib.patch: Update for riscv64
- Don't fail if _ctypes or dl extension was not built

OBS-URL: https://build.opensuse.org/request/show/1089783
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=364
 2023-05-30 11:53:04 +00:00
Matej Cepl
352049f843 Correction 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=363
 2023-05-29 19:31:36 +00:00
Matej Cepl
1108b564fe - The condition around libnsl-devel BuildRequires is NOT 
switching off NIS support on SLE < 15, support for NIS used to
  be in the glibc itself. Partial revert of sr#1061583.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=362
 2023-05-29 18:52:32 +00:00
Matej Cepl
c0fecb5ffe - Add PygmentsBridge-trime_doctest_flags.patch to allow build of 
the documentation even with the current Sphinx. (SUSE-ONLY
  PATCH, DO NOT SEND UPSTREAM!)

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=360
 2023-05-24 20:56:16 +00:00
Matej Cepl
cd31207dec Forgot to run pre_checkin.sh 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=359
 2023-05-24 18:54:17 +00:00
Matej Cepl
e4a0f3dd73 Fix libnsl-devel condition per review request. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=358
 2023-05-24 18:46:49 +00:00
Matej Cepl
74c4b15a95 Accepting request 1085043 from home:dimstar:Factory 
- Add _multibuild to define 2nd spec file as additional flavor.
  Eliminates the need for source package links in OBS.

OBS-URL: https://build.opensuse.org/request/show/1085043
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=356
 2023-05-05 13:32:20 +00:00
Matej Cepl
f552945ee9 - Why in the world we download from HTTP? 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=355
 2023-04-30 18:18:35 +00:00
Matej Cepl
b5b8f18a14 Run pre_checkin.sh 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=353
 2023-03-29 11:48:36 +00:00
Matej Cepl
d52e9cd8c4 - Enable --with-system-ffi for non-standard architectures. 
- SLE-12 builds nis.so as well.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=352
 2023-03-29 10:23:12 +00:00
Matej Cepl
7e0f3cb088 - Enable --with-system-ffi for non-standard architectures. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=350
 2023-03-08 21:18:31 +00:00
Matej Cepl
97104e51ec - SLE-12 builds nis.so as well. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=348
 2023-03-06 15:35:17 +00:00
Matej Cepl
735f57103b SLE-12 builds nis.so as well. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=347
 2023-03-06 14:44:35 +00:00
Matej Cepl
b60b8e8937 Create isascii() shim for missing str.isascii(). 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=345
 2023-03-02 15:36:10 +00:00
Matej Cepl
9f86e564da - Add CVE-2023-24329-blank-URL-bypass.patch (CVE-2023-24329, 
bsc#1208471) blocklists bypass via the urllib.parse component
  when supplying a URL that starts with blank characters

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=344
 2023-03-01 22:01:21 +00:00
Matej Cepl
c21db0430f - Add CVE-2023-24329-blank-URL-bypass.patch (CVE-2023-24329, 
bsc#1208471) blocklists bypass via the urllib.parse component
  when supplying a URL that starts with blank characters

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=343
 2023-03-01 22:00:56 +00:00
Matej Cepl
ea48fe2e7a Accepting request 1061583 from home:kukuk:branches:devel:languages:python:Factory 
- Disable NIS for new products, it's deprecated and gets removed

- Disable NIS for new products, it's deprecated and gets removed

OBS-URL: https://build.opensuse.org/request/show/1061583
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=341
 2023-01-27 16:14:53 +00:00
Matej Cepl
2a9d6402e8 - Add skip_unverified_test.patch because apparently switching off 
SSL verification doesn't work on older SLE.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=339
 2023-01-19 08:45:16 +00:00
Matej Cepl
6a9d569c25 - Restore python-2.7.9-sles-disable-verification-by-default.patch 
for SLE-12.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=337
 2022-11-22 20:56:11 +00:00
Matej Cepl
615a636d68 Adjust Patches 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=335
 2022-11-10 14:35:05 +00:00
Matej Cepl
3f9f4e7cb7 - Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid 
CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding
  extremely long domain names.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=334
 2022-11-09 19:07:01 +00:00
Matej Cepl
eb3f10bd75 Accepting request 1003076 from home:bmwiedemann:branches:devel:languages:python:Factory 
- Add bpo34990-2038-problem-compileall.patch making compileall.py
  compliant with year 2038 (bsc#1202666, gh#python/cpython#79171),
  backport of fix to Python 2.7.

OBS-URL: https://build.opensuse.org/request/show/1003076
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=332
 2022-09-15 07:46:07 +00:00
Steve Kowalik
de85457a6c - Add patch CVE-2021-28861-double-slash-path.patch: 
* BaseHTTPServer: Fix an open redirection vulnerability in the HTTP server
    when an URI path starts with //. (bsc#1202624, CVE-2021-28861)

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=330
 2022-09-07 04:48:27 +00:00
Matej Cepl
9a59733bbe Fix the patch 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=328
 2022-06-09 22:53:53 +00:00
Matej Cepl
d38335e738 Fix the patch to use Python 2-compatible unicode strings. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=327
 2022-06-09 21:33:02 +00:00
Matej Cepl
da24c1af97 - Add CVE-2015-20107-mailcap-unsafe-filenames.patch to avoid 
CVE-2015-20107 (bsc#1198511, gh#python/cpython#68966), the
  command injection in the mailcap module.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=326
 2022-06-09 16:47:44 +00:00
Matej Cepl
cadbcd01cd Accepting request 978856 from home:marxin:branches:devel:languages:python:Factory 
- Filter out executable-stack error that is triggered for i586
  target.

OBS-URL: https://build.opensuse.org/request/show/978856
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=324
 2022-05-24 08:29:21 +00:00
Matej Cepl
3edb04a7cd Accepting request 962755 from home:msmeissn:branches:devel:languages:python:Factory 
- python-2.7.9-sles-disable-verification-by-default.patch: remove
  as it by default now always does strict enforcement anyway and it
  is 2022.

OBS-URL: https://build.opensuse.org/request/show/962755
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=322
 2022-03-18 17:01:12 +00:00
Matej Cepl
2dad11ae4d - Recover again proper value of %python2_package_prefix 
(bsc#1175619).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=320
 2022-03-02 00:59:44 +00:00
Matej Cepl
f6d8c1bb6a Fix changelogs 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=319
 2022-02-26 20:11:49 +00:00
Matej Cepl
dc8a4b385b - Update bundled pip wheel to the latest SLE version patched 
against bsc#1186819 (CVE-2021-3572).
- Run pre_checkin.sh as well (so other than python-base
  changelogs are synced as well).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=318
 2022-02-26 12:44:02 +00:00
Matej Cepl
9442b9b6ab - BuildRequire rpm-build-python: The provider to inject python(abi) 
has been moved there. rpm-build pulls rpm-build-python
  automatically in when building anything against python3-base, but
  this implies that the initial build of python3-base does not
  trigger the automatic installation.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=317
 2022-02-18 11:02:04 +00:00
Matej Cepl
a2b1f34add - Older SLE versions should use old OpenSSL. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=316
 2022-02-18 10:52:31 +00:00
Matej Cepl
5c19a933c4 Actually be py2k compatible 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=314
 2022-02-09 17:44:12 +00:00
Matej Cepl
510e372768 Forgot to run pre_checkin.sh 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=313
 2022-02-09 16:55:07 +00:00
Matej Cepl
e29abdcb89 - Add CVE-2022-0391-urllib_parse-newline-parsing.patch 
(bsc#1195396, CVE-2022-0391, bpo#43882) sanitizing URLs
  containing ASCII newline and tabs in urlparse.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=312
 2022-02-09 16:52:05 +00:00
Matej Cepl
430843dcc5 Add What's New entry. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=311
 2022-02-06 08:01:12 +00:00
Matej Cepl
68c3ceb48d - Add CVE-2021-4189-ftplib-trust-PASV-resp.patch (bsc#1194146, 
bpo#43285, CVE-2021-4189, gh#python/cpython#24838) make ftplib
  not trust the PASV response.

- build against openssl 1.1.x (incompatible with openssl 3.0x)
  for now.

- on sle12, python2 modules will still be called python-xxxx until EOL,
  for newer SLE versions they will be python2-xxxx

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=310
 2022-02-06 07:47:48 +00:00
Matej Cepl
556d0713a6 Accepting request 936021 from home:dirkmueller:Factory 
- build against openssl 1.1.x (incompatible with openssl 3.0x) for now

OBS-URL: https://build.opensuse.org/request/show/936021
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=309
 2021-12-06 15:16:14 +00:00
Matej Cepl
b580dedff6 Accepting request 928691 from home:msmeissn:branches:devel:languages:python:Factory 
- on sle12, python2 modules will still be called python-xxxx until EOL,
  for newer SLE versions they will be python2-xxxx

OBS-URL: https://build.opensuse.org/request/show/928691
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=308
 2021-11-02 19:29:32 +00:00
Matej Cepl
a1e48140c5 Accepting request 925378 from home:dimstar:Factory 
- BuildRequire rpm-build-python: The provider to inject python(abi)
  has been moved there. rpm-build pulls rpm-build-python
  automatically in when building anything against python3-base, but
  this implies that the initial build of python3-base does not
  trigger the automatic installation.

- BuildRequire rpm-build-python: The provider to inject python(abi)
  has been moved there. rpm-build pulls rpm-build-python
  automatically in when building anything against python3-base, but
  this implies that the initial build of python3-base does not
  trigger the automatic installation.

- BuildRequire rpm-build-python: The provider to inject python(abi)
  has been moved there. rpm-build pulls rpm-build-python
  automatically in when building anything against python3-base, but
  this implies that the initial build of python3-base does not
  trigger the automatic installation.

OBS-URL: https://build.opensuse.org/request/show/925378
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=307
 2021-10-15 13:31:18 +00:00
Matej Cepl
971ad33422 - Remove upstreamed patches: 
- CVE-2019-18348-CRLF_injection_via_host_part.patch
  - python-2.7.14-CVE-2017-1000158.patch
  - CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch
  - CVE-2018-1061-DOS-via-regexp-difflib.patch
  - CVE-2019-10160-netloc-port-regression.patch
  - CVE-2019-16056-email-parse-addr.patch
  - Fixes a ReDoS vulnerability in `http.cookiejar`. Patch by Ben
    Caller.
  - Fixed possible leak in `PyArg_Parse` and similar
    `PY_SSIZE_T_CLEAN` is not defined.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=306
 2021-10-08 20:45:22 +00:00
Matej Cepl
97f5f8e975 - Modify Lib/ensurepip/__init__.py to contain the same version 
numbers as are in reality the ones in the bundled wheels
  (bsc#1187668).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=305
 2021-10-04 21:15:18 +00:00
Matej Cepl
793c3bb790 - Add CVE-2019-20907_tarfile-inf-loop.patch fixing bsc#1174091 
(CVE-2019-20907, bpo#39017) avoiding possible infinite loop
  in specifically crafted tarball.
  Add recursion.tar as a testing tarball for the patch.
- Provide the newest setuptools wheel (bsc#1176262,
  CVE-2019-20916) in their correct form (bsc#1180686).
- Add CVE-2020-26116-httplib-header-injection.patch fixing bsc#1177211
  (CVE-2020-26116, bpo#39603) no longer allowing special characters in
  the method parameter of HTTPConnection.putrequest in httplib, stopping
  injection of headers. Such characters now raise ValueError. 
  - bsc#1155094 (CVE-2019-18348) Disallow control characters in
    hostnames in http.client. Such potentially malicious header
    injection URLs now cause a InvalidURL to be raised.
- bsc#1109847 (CVE-2018-14647): add
  CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch fixing
  bpo-34623.
  fixing bpo-35746 (CVE-2019-5010).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=304
 2021-09-25 21:16:13 +00:00
Matej Cepl
7919fc45c1 Run pre_checkin.sh 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=303
 2021-09-17 19:43:07 +00:00