python/python-py7zr
SHA256
14
0
Fork 0
forked from pool/python-py7zr
Code Pull Requests Activity

Accepting request 1044074 from home:bnavigator:branches:devel:languages:python

Browse Source 
- Update to 0.20.2
  * Fix error with good path data, when detecting wrong path with
    new canonical_path(), and drop resolve() call on path.
- Release 0.20.1
  ## Security
  * Fix sanity check for path traversal attack(#480)
  * Add path checker in writef() and writestr() methods that
    ignores evil pass.
    - When pass arcname as evil path such as
      "../../../../tmp/evil.sh"
    - it raises ValueError
  * Check symlink and junction is under target folder when
    extraction
- Release 0.20.0
  * Support enhanced deflate compression.(#472)
  * Bump setuptools@63 and setuptools_scm@7 (#473)
  * Deprecate Python 3.6 support (#473)
- Fixes boo#1206141 CVE-2022-44900

- Update to version 0.19.0
  * big changelog
- Move tests to multibuild

OBS-URL: https://build.opensuse.org/request/show/1044074
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-py7zr?expand=0&rev=7
This commit is contained in:
Daniel Garcia
2022-12-22 10:44:16 +00:00
committed by Git OBS Bridge
parent c965e2733e
commit 31a408395e
5 changed files with 88 additions and 41 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
python-py7zr.changes
View File

@@ -1,3 +1,32 @@
-------------------------------------------------------------------
Wed Dec 21 10:02:30 UTC 2022 - Ben Greiner <code@bnavigator.de>
- Update to 0.20.2
* Fix error with good path data, when detecting wrong path with
new canonical_path(), and drop resolve() call on path.
- Release 0.20.1
## Security
* Fix sanity check for path traversal attack(#480)
* Add path checker in writef() and writestr() methods that
ignores evil pass.
- When pass arcname as evil path such as
"../../../../tmp/evil.sh"
- it raises ValueError
* Check symlink and junction is under target folder when
extraction
- Release 0.20.0
* Support enhanced deflate compression.(#472)
* Bump setuptools@63 and setuptools_scm@7 (#473)
* Deprecate Python 3.6 support (#473)
- Fixes boo#1206141 CVE-2022-44900
-------------------------------------------------------------------
Fri Jul 15 07:54:24 UTC 2022 - Ben Greiner <code@bnavigator.de>
- Update to version 0.19.0
* big changelog
- Move tests to multibuild
-------------------------------------------------------------------
Thu Jul 14 18:23:24 UTC 2022 - Ben Greiner <code@bnavigator.de>