Accepting request 821971 from home:gmbr3:Active

- Update  to version 3.8.5:
  - bpo-39603: Prevent http header injection by rejecting control characters in http.client.putrequest(…).
  - bpo-41295:  a regression in CPython 3.8.4 where defining “__setattr__” in a multi-inheritance setup and calling up the hierarchy chain could fail if builtins/extension types were involved in the base types.
  - bpo-41288: Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now UnpicklingError instead of crashing.
  - bpo-39017: Avoid infinite loop when reading specially crafted TAR files using the tarfile module (CVE-2019-20907).
  - bpo-37703: Updated Documentation to comprehensively elaborate on the behaviour of gather.cancel()
  - bpo-41302: Enable building Python 3.8 with libmpdec-2.5.0 to ease maintenance for Linux distributions. Patch by Felix Yan.
  - bpo-41300: Save files with non-ascii chars. Fix regression released in 3.9.0b4 and 3.8.4.

OBS-URL: https://build.opensuse.org/request/show/821971
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python38?expand=0&rev=21
This commit is contained in:
Matej Cepl 2020-07-20 18:57:14 +00:00 committed by Git OBS Bridge
parent ec8e13b00e
commit 0c680d8e86
6 changed files with 32 additions and 20 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:5f41968a95afe9bc12192d7e6861aab31e80a46c46fa59d3d837def6a4cd4d37
size 18020412

View File

@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----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=dfUG
-----END PGP SIGNATURE-----

3
Python-3.8.5.tar.xz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:e3003ed57db17e617acb382b0cade29a248c6026b1bd8aad1f976e9af66a83b0
size 18019640

16
Python-3.8.5.tar.xz.asc Normal file
View File

@ -0,0 +1,16 @@
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEE4/8oOcBIslwITevpsmmV4xAlBWgFAl8VnlAACgkQsmmV4xAl
BWj2+Q/9FxlF7DPcVP3+9eHsW//aXpXNm/3hFZNlvpDX5Y0qsT4mOCFlqzBVVufY
nXp+pz4l5HJGcvMfgW13aDVvl5HHK0WHEl7gI19wuE+1Ot3LO2Cq4sgNW3SzvmdF
Dif3Ovvz1mE/S5LYXfLrsmOpU9oNe1oOiHX7l8WTBArMzCckc+e6TxRlLZw0NTr4
8mgWu9+OTw8ltOSDyGZLrzXHoRssfSSLjjwxeDm2fLYo4YWj11Q6qIFp7dUEK23d
Yv7o980fiw8VaxFFV3a/UH2EXVS+AL8Gxb7NpxS4ejtfPmLKnb0CHSjvnT45KqFi
MfkV41ng4chW4CC14rugfd2QvC9a+EIKm3Hd1qt3iFIv1pn38w8wT5Nf7tMN9lhZ
90eVh8nJAUHlAs+4Zz/crHwfxQ82pnf6TpIqJEJzaxQ3ncS0creG0jKwnWhLLheJ
TVhqAxIENVbync7mfjHD2sNknC/YqiuUGSef13Wc3d15V26HqeUULiNupsZ9n6wr
G1Llh+Wxld0kW7ht+1Gt1R1I9CsTYMWX3CvWCZVibh0ClT4r63n09kJGul4WdYp1
IdjrEPgm0GMSRFuR1MN0qSCBkpGyYgikHJYw8fwykqi+MSp1Ibh/eO1DhuInyrbx
Rb1FicRsRi7E9Tak9yXjKzAr67dPLcPwnblTkdRINFglAP3IiGo=
=ussS
-----END PGP SIGNATURE-----

View File

@ -1,3 +1,15 @@
-------------------------------------------------------------------
Mon Jul 20 17:46:54 UTC 2020 - Callum Farmer <callumjfarmer13@gmail.com>
- Update to version 3.8.5:
- bpo-39603: Prevent http header injection by rejecting control characters in http.client.putrequest(…).
- bpo-41295: a regression in CPython 3.8.4 where defining “__setattr__” in a multi-inheritance setup and calling up the hierarchy chain could fail if builtins/extension types were involved in the base types.
- bpo-41288: Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now UnpicklingError instead of crashing.
- bpo-39017: Avoid infinite loop when reading specially crafted TAR files using the tarfile module (CVE-2019-20907).
- bpo-37703: Updated Documentation to comprehensively elaborate on the behaviour of gather.cancel()
- bpo-41302: Enable building Python 3.8 with libmpdec-2.5.0 to ease maintenance for Linux distributions. Patch by Felix Yan.
- bpo-41300: Save files with non-ascii chars. Fix regression released in 3.9.0b4 and 3.8.4.
-------------------------------------------------------------------
Fri Jul 17 06:39:45 UTC 2020 - Tomáš Chvátal <tchvatal@suse.com>

View File

@ -87,7 +87,7 @@
%bcond_without profileopt
%endif
Name: %{python_pkg_name}%{psuffix}
Version: 3.8.4
Version: 3.8.5
Release: 0
Summary: Python 3 Interpreter
License: Python-2.0