python-interpreters/python310
SHA256
7
0
Fork 0
forked from pool/python310
Code Pull Requests Activity

Set link to python310.30915 via maintenance_release request

Browse Source
This commit is contained in:
Daniel Mach
2023-10-16 10:48:11 +00:00
committed by Matěj Cepl
parent aa5d3ba9db
commit 633ff95a90
3 changed files with 3136 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
python310.changes
View File

@@ -1,13 +1,15 @@
-------------------------------------------------------------------
Mon Sep 4 13:18:29 UTC 2023 - Daniel Garcia <daniel.garcia@suse.com>
- Update to 3.10.13 (bsc#1214692):
- Add fix-sphinx-72.patch to make it work with latest sphinx version
gh#python/cpython#97950
- Update to 3.10.13:
- gh-108310: Fixed an issue where instances of ssl.SSLSocket were
vulnerable to a bypass of the TLS handshake and included
protections (like certificate verification) and treating sent
unencrypted data as if it were post-handshake TLS encrypted data.
Security issue reported as CVE-2023-40217 by Aapo Oksman. Patch by
Gregory P. Smith.
Gregory P. Smith. (bsc#1214692)
- gh-107845: tarfile.data_filter() now takes the location of
symlinks into account when determining their target, so it will no
longer reject some valid tarballs with