Fix changelog

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python39?expand=0&rev=77
2021-08-09 13:20:12 +00:00 · 2021-08-09 13:20:12 +00:00 · 4b1c2f2f9c
commit 4b1c2f2f9c
parent c524d26818
1 changed files with 8 additions and 8 deletions
--- a/python39.changes
+++ b/python39.changes
@ -216,14 +216,14 @@ Wed May  5 15:16:58 UTC 2021 - Matej Cepl <mcepl@suse.com>
    - bpo-43472: Ensures interpreter-level audit hooks receive
      the cpython.PyInterpreterState_New event when called
      through the _xxsubinterpreters module.
-    - bpo-36384: ipaddress module no longer accepts any leading
-      zeros in IPv4 address strings. Leading zeros are ambiguous
-      and interpreted as octal notation by some libraries. For
-      example the legacy function socket.inet_aton() treats
-      leading zeros as octal notatation. glibc implementation of
-      modern inet_pton() does not accept any leading zeros. For
-      a while the ipaddress module used to accept ambiguous
-      leading zeros.
+    - bpo-36384 (bsc#1185706, CVE-2021-29921): ipaddress module
+      no longer accepts any leading zeros in IPv4 address
+      strings. Leading zeros are ambiguous and interpreted as
+      octal notation by some libraries. For example the legacy
+      function socket.inet_aton() treats leading zeros as octal
+      notatation. glibc implementation of modern inet_pton() does
+      not accept any leading zeros. For a while the ipaddress
+      module used to accept ambiguous leading zeros.
    - bpo-43075: Fix Regular Expression Denial of Service (ReDoS)
      vulnerability in urllib.request.AbstractBasicAuthHandler.
      The ReDoS-vulnerable regex has quadratic worst-case