Fix changelog
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python39?expand=0&rev=77
This commit is contained in:
Git OBS Bridge
@@ -216,14 +216,14 @@ Wed May 5 15:16:58 UTC 2021 - Matej Cepl <mcepl@suse.com>
|
|||||||
- bpo-43472: Ensures interpreter-level audit hooks receive
|
- bpo-43472: Ensures interpreter-level audit hooks receive
|
||||||
the cpython.PyInterpreterState_New event when called
|
the cpython.PyInterpreterState_New event when called
|
||||||
through the _xxsubinterpreters module.
|
through the _xxsubinterpreters module.
|
||||||
- bpo-36384: ipaddress module no longer accepts any leading
|
- bpo-36384 (bsc#1185706, CVE-2021-29921): ipaddress module
|
||||||
zeros in IPv4 address strings. Leading zeros are ambiguous
|
no longer accepts any leading zeros in IPv4 address
|
||||||
and interpreted as octal notation by some libraries. For
|
strings. Leading zeros are ambiguous and interpreted as
|
||||||
example the legacy function socket.inet_aton() treats
|
octal notation by some libraries. For example the legacy
|
||||||
leading zeros as octal notatation. glibc implementation of
|
function socket.inet_aton() treats leading zeros as octal
|
||||||
modern inet_pton() does not accept any leading zeros. For
|
notatation. glibc implementation of modern inet_pton() does
|
||||||
a while the ipaddress module used to accept ambiguous
|
not accept any leading zeros. For a while the ipaddress
|
||||||
leading zeros.
|
module used to accept ambiguous leading zeros.
|
||||||
- bpo-43075: Fix Regular Expression Denial of Service (ReDoS)
|
- bpo-43075: Fix Regular Expression Denial of Service (ReDoS)
|
||||||
vulnerability in urllib.request.AbstractBasicAuthHandler.
|
vulnerability in urllib.request.AbstractBasicAuthHandler.
|
||||||
The ReDoS-vulnerable regex has quadratic worst-case
|
The ReDoS-vulnerable regex has quadratic worst-case
|
||||||
|
|||||||
Reference in New Issue
Block a user