pool/python
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
466 Commits 2 Branches 0 Tags
Commit Graph

466 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Ana Guerrero
9012d6c73f Accepting request 1224271 from devel:languages:python:Factory 
- Remove -IVendor/ from python-config boo#1231795

OBS-URL: https://build.opensuse.org/request/show/1224271
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=199
 2024-11-15 14:37:45 +00:00
Matej Cepl
141689d1dc - Remove -IVendor/ from python-config boo#1231795 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=429
 2024-11-14 16:59:26 +00:00
Matej Cepl
b5cfe7992f revert 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=428
 2024-09-30 18:58:36 +00:00
Matej Cepl
a4d601d4ed Updated patch 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=427
 2024-09-23 20:01:27 +00:00
Matej Cepl
5f785230b9 FIx patches 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=426
 2024-09-20 21:10:45 +00:00
Matej Cepl
2db1a650e2 - Add CVE-2024-6232-ReDOS-backtrack-tarfile.patch prevent 
ReDos via excessive backtracking while parsing header values
  (bsc#1230227, CVE-2024-6232).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=425
 2024-09-20 21:00:23 +00:00
Dominique Leuenberger
42ee8aa250 Accepting request 1189042 from devel:languages:python:Factory 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/1189042
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=198
 2024-07-24 13:33:04 +00:00
Matej Cepl
9594a07523 - Stop using %%defattr, it seems to be breaking proper executable 
attributes on /usr/bin/ scripts (bsc#1227378).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=423
 2024-07-15 12:20:19 +00:00
Ana Guerrero
ff752654c7 Accepting request 1175721 from devel:languages:python:Factory 
- Restore _multibuild

OBS-URL: https://build.opensuse.org/request/show/1175721
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=197
 2024-05-22 19:29:36 +00:00
Matej Cepl
ad4be39092 - Restore _multibuild 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=421
 2024-05-22 09:00:19 +00:00
Matej Cepl
000078b32b Restore _multibuild 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=420
 2024-05-22 08:35:08 +00:00
Ana Guerrero
6565758ff5 Accepting request 1175099 from devel:languages:python:Factory 
- bsc#1221854 (CVE-2024-0450) Add
  CVE-2024-0450-zipfile-avoid-quoted-overlap-zipbomb.patch
  detecting the vulnerability of the "quoted-overlap" zipbomb
  (from gh#python/cpython!110016).

- Add CVE-2023-52425-libexpat-2.6.0-remove-failing-tests.patch
  removing failing test fixing bpo#3151, which we just not
  support.
- Remove patches over those embedded packages (cffi):
  - python-2.7-libffi-aarch64.patch
  - sparc_longdouble.patch

OBS-URL: https://build.opensuse.org/request/show/1175099
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=196
 2024-05-21 16:34:28 +00:00
Matej Cepl
01ce66c584 - Add CVE-2023-52425-libexpat-2.6.0-remove-failing-tests.patch 
removing failing test fixing bpo#3151, which we just not
  support.
- Remove patches over those embedded packages (cffi):
  - python-2.7-libffi-aarch64.patch
  - sparc_longdouble.patch

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=418
 2024-05-19 06:56:12 +00:00
Matej Cepl
8c35dee7e0 fix patch 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=417
 2024-05-18 17:48:46 +00:00
Matej Cepl
3b6fb6241d - bsc#1221854 (CVE-2024-0450) Add 
CVE-2024-0450-zipfile-avoid-quoted-overlap-zipbomb.patch
  detecting the vulnerability of the "quoted-overlap" zipbomb
  (from gh#python/cpython!110016).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=416
 2024-05-18 16:51:08 +00:00
Ana Guerrero
36ed6c337d Accepting request 1173435 from devel:languages:python:Factory 
- Switch to using the system libexpat (bsc#1219559,
  CVE-2023-52425)
- Make sure to remove all embedded versions of other packages
  (including expat).

OBS-URL: https://build.opensuse.org/request/show/1173435
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=195
 2024-05-13 15:56:59 +00:00
Matej Cepl
773b5da2c2 - Switch to using the system libexpat (bsc#1219559, 
CVE-2023-52425)
- Make sure to remove all embedded versions of other packages
  (including expat).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=414
 2024-05-11 05:48:37 +00:00
Matej Cepl
40186bcd83 Enable system libexpat 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=413
 2024-05-10 20:06:20 +00:00
Ana Guerrero
9d69392fdf Accepting request 1169941 from devel:languages:python:Factory 
- Modify CVE-2023-27043-email-parsing-errors.patch to fix the
  unicode string handling in email.utils.parseaddr()
  (bsc#1222537).
- Revert CVE-2022-48560-after-free-heappushpop.patch, the fix was
  unneeded.
- Modify CVE-2023-27043-email-parsing-errors.patch to fix the
  unicode string handling in email.utils.parseaddr()
  (bsc#1222537).
- Revert CVE-2022-48560-after-free-heappushpop.patch, the fix was
  unneeded.
- Modify CVE-2023-27043-email-parsing-errors.patch to fix the
  unicode string handling in email.utils.parseaddr()
  (bsc#1222537).
- Revert CVE-2022-48560-after-free-heappushpop.patch, the fix was
  unneeded.

OBS-URL: https://build.opensuse.org/request/show/1169941
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=194
 2024-04-25 18:47:30 +00:00
Matej Cepl
93c812d448 - Revert CVE-2022-48560-after-free-heappushpop.patch, the fix was 
unneeded.
- Add CVE-2022-48560-after-free-heappushpop.patch fixing
  use-after-free in Python via heappushpop in heapq (bsc#1214675,
  CVE-2022-48560).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=411
 2024-04-23 15:53:53 +00:00
Matej Cepl
bd965ddc0d REmove the patch 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=410
 2024-04-17 10:47:07 +00:00
Matej Cepl
6c006a7c74 Remove superfluous CVE-2022-48560-after-free-heappushpop.patch. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=409
 2024-04-17 10:46:39 +00:00
Matej Cepl
39b345bbe2 Switch off tests again. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=408
 2024-04-16 21:24:47 +00:00
Matej Cepl
7ccba948f3 - Modify CVE-2023-27043-email-parsing-errors.patch to fix the 
unicode string handling in email.utils.parseaddr()
  (bsc#1222537).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=407
 2024-04-16 20:26:40 +00:00
Matej Cepl
c8f2c7a003 Update patches 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=406
 2024-04-16 19:29:14 +00:00
Matej Cepl
86d87a8612 - Switch on tests again. 
- Add bsc1222537-py2-email-addr-parse.patch to fix the unicode
  string handling in email.utils.parseaddr() (bsc#1222537).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=405
 2024-04-16 15:40:54 +00:00
Matej Cepl
bfb85e8df7 Update the patch 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=404
 2024-04-16 15:39:10 +00:00
Matej Cepl
5267a1835f Enable tests again. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=403
 2024-04-15 22:17:01 +00:00
Matej Cepl
d4b42b6c18 WIP 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=402
 2024-04-15 19:07:31 +00:00
Ana Guerrero
320bd4037c Accepting request 1158938 from devel:languages:python:Factory 
- Switch off tests. ONLY FOR FACTORY!!! (bsc#1219306)

OBS-URL: https://build.opensuse.org/request/show/1158938
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=193
 2024-03-19 16:29:25 +00:00
Matej Cepl
0eeee1a907 - Switch off tests. ONLY FOR FACTORY!!! (bsc#1219306) 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=400
 2024-03-18 09:55:09 +00:00
Dominique Leuenberger
fe9da3296b Accepting request 1155422 from devel:languages:python:Factory 
OBS-URL: https://build.opensuse.org/request/show/1155422
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=192
 2024-03-07 17:27:29 +00:00
Matej Cepl
a81a414e00 Accepting request 1155418 from home:dgarcia:branches:openSUSE:Factory:Rings:1-MinimalX 
- Build with -std=gnu89 to build correctly with gcc14, bsc#1220970

OBS-URL: https://build.opensuse.org/request/show/1155418
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=398
 2024-03-06 06:48:36 +00:00
Ana Guerrero
8939027ca5 Accepting request 1137573 from devel:languages:python:Factory 
OBS-URL: https://build.opensuse.org/request/show/1137573
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=191
 2024-01-08 22:43:55 +00:00
Matej Cepl
515bbd01ae Accepting request 1137557 from home:dgarcia:branches:devel:languages:python:Factory 
- Add CVE-2023-27043-email-parsing-errors.patch to
  gh#python/cpython!111116, fixing bsc#1210638 (CVE-2023-27043).

OBS-URL: https://build.opensuse.org/request/show/1137557
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=396
 2024-01-08 13:39:18 +00:00
Ana Guerrero
31ccfc0bf4 Accepting request 1130832 from devel:languages:python:Factory 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/1130832
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=190
 2023-12-05 16:02:38 +00:00
Ana Guerrero
09e4236b01 Accepting request 1129163 from devel:languages:python:Factory 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/1129163
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=189
 2023-11-28 21:18:21 +00:00
Matej Cepl
e7e7093952 Fix SPEC files 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=393
 2023-11-27 17:14:19 +00:00
Matej Cepl
929efa73b4 Fix changelog 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=392
 2023-11-27 17:09:47 +00:00
Matej Cepl
30e970e5f7 - Add CVE-2022-48560-after-free-heappushpop.patch fixing 
use-after-free in Python via heappushpop in heapq (bsc#1214675,
  CVE-2022-48560).
- switch from %patchN style to the %patch -P N one.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=391
 2023-11-27 16:32:40 +00:00
Matej Cepl
051c784297 - Allow nis.so for SLE-12. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=390
 2023-11-27 14:02:23 +00:00
Ana Guerrero
fa963f5919 Accepting request 1111680 from devel:languages:python:Factory 
- (bsc#1214691, CVE-2022-48566) Add
  CVE-2022-48566-compare_digest-more-constant.patch to make
  compare_digest more constant-time.

- (bsc#1214685, CVE-2022-48565) Add
  CVE-2022-48565-plistlib-XML-vulns.patch (from
  gh#python/cpython#86217) reject XML entity declarations in
  plist files.
- Remove BOTH CVE-2023-27043-email-parsing-errors.patch and
  Revert-gh105127-left-tests.patch (as per discussion on
  bsc#1210638).

OBS-URL: https://build.opensuse.org/request/show/1111680
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=188
 2023-09-22 19:46:40 +00:00
Matej Cepl
58f1758208 There is no InvalidFileException 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=388
 2023-09-16 21:37:01 +00:00
Matej Cepl
e20f9250e8 Remove unused patches 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=387
 2023-09-16 17:06:07 +00:00
Matej Cepl
debb82ab6f Update patch 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=386
 2023-09-16 17:04:43 +00:00
Matej Cepl
10bb24e527 - (bsc#1214691, CVE-2022-48566) Add 
CVE-2022-48566-compare_digest-more-constant.patch to make
  compare_digest more constant-time.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=385
 2023-09-16 16:30:00 +00:00
Matej Cepl
fe93386c91 - (bsc#1214685, CVE-2022-48565) Add 
CVE-2022-48565-plistlib-XML-vulns.patch (from
  gh#python/cpython#86217) reject XML entity declarations in
  plist files.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=384
 2023-09-14 21:54:10 +00:00
Ana Guerrero
e5cdb13a6b Accepting request 1110909 from devel:languages:python:Factory 
Forwarded request #1110536 from dgarcia

- Add CVE-2023-40217-avoid-ssl-pre-close.patch fixing
    gh#python/cpython#108310, backport from upstream patch
    gh#python/cpython#108315
    (bsc#1214692, CVE-2023-40217)

OBS-URL: https://build.opensuse.org/request/show/1110909
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=187
 2023-09-14 14:25:01 +00:00
Matej Cepl
0012499f47 Accepting request 1110536 from home:dgarcia:branches:devel:languages:python:Factory 
- Add CVE-2023-40217-avoid-ssl-pre-close.patch fixing
  gh#python/cpython#108310, backport from upstream patch
  gh#python/cpython#108315
  (bsc#1214692, CVE-2023-40217)

OBS-URL: https://build.opensuse.org/request/show/1110536
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=382
 2023-09-13 12:22:49 +00:00
Dominique Leuenberger
c9ea265237 Accepting request 1103620 from devel:languages:python:Factory 
- IT MEANS THAT bsc#1210638 STILL HAS NOT BEEN FIXED!
- Add Revert-gh105127-left-tests.patch (gh#python/cpython!106941)
  partially reverting CVE-2023-27043-email-parsing-errors.patch,
  because of the regression in gh#python/cpython#106669.
- (bsc#1210638, CVE-2023-27043) Add
  CVE-2023-27043-email-parsing-errors.patch, which detects email
  address parsing errors and returns empty tuple to indicate the
  parsing error (old API).
- IT MEANS THAT bsc#1210638 STILL HAS NOT BEEN FIXED!
- Add Revert-gh105127-left-tests.patch (gh#python/cpython!106941)
  partially reverting CVE-2023-27043-email-parsing-errors.patch,
  because of the regression in gh#python/cpython#106669.
- (bsc#1210638, CVE-2023-27043) Add
  CVE-2023-27043-email-parsing-errors.patch, which detects email
  address parsing errors and returns empty tuple to indicate the
  parsing error (old API).
- IT MEANS THAT bsc#1210638 STILL HAS NOT BEEN FIXED!
- Add Revert-gh105127-left-tests.patch (gh#python/cpython!106941)
  partially reverting CVE-2023-27043-email-parsing-errors.patch,
  because of the regression in gh#python/cpython#106669.
- (bsc#1210638, CVE-2023-27043) Add
  CVE-2023-27043-email-parsing-errors.patch, which detects email
  address parsing errors and returns empty tuple to indicate the
  parsing error (old API).

OBS-URL: https://build.opensuse.org/request/show/1103620
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python?expand=0&rev=186
 2023-08-15 14:38:55 +00:00