python/python-py7zr
SHA256
14
0
Fork 0
forked from pool/python-py7zr
Code Pull Requests Activity
Files
25a4739194b5e3ceb2fc93c79c01660ee1eed03e7455285d5076496d885fac89
python-py7zr/python-py7zr.changes
Daniel Garcia 31a408395e Accepting request 1044074 from home:bnavigator:branches:devel:languages:python 
- Update to 0.20.2
  * Fix error with good path data, when detecting wrong path with
    new canonical_path(), and drop resolve() call on path.
- Release 0.20.1
  ## Security
  * Fix sanity check for path traversal attack(#480)
  * Add path checker in writef() and writestr() methods that
    ignores evil pass.
    - When pass arcname as evil path such as
      "../../../../tmp/evil.sh"
    - it raises ValueError
  * Check symlink and junction is under target folder when
    extraction
- Release 0.20.0
  * Support enhanced deflate compression.(#472)
  * Bump setuptools@63 and setuptools_scm@7 (#473)
  * Deprecate Python 3.6 support (#473)
- Fixes boo#1206141 CVE-2022-44900

- Update to version 0.19.0
  * big changelog
- Move tests to multibuild

OBS-URL: https://build.opensuse.org/request/show/1044074
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-py7zr?expand=0&rev=7
2022-12-22 10:44:16 +00:00

49 lines
1.8 KiB
Plaintext
Raw Blame History

-------------------------------------------------------------------
Wed Dec 21 10:02:30 UTC 2022 - Ben Greiner <code@bnavigator.de>
- Update to 0.20.2
* Fix error with good path data, when detecting wrong path with
new canonical_path(), and drop resolve() call on path.
- Release 0.20.1
## Security
* Fix sanity check for path traversal attack(#480)
* Add path checker in writef() and writestr() methods that
ignores evil pass.
- When pass arcname as evil path such as
"../../../../tmp/evil.sh"
- it raises ValueError
* Check symlink and junction is under target folder when
extraction
- Release 0.20.0
* Support enhanced deflate compression.(#472)
* Bump setuptools@63 and setuptools_scm@7 (#473)
* Deprecate Python 3.6 support (#473)
- Fixes boo#1206141 CVE-2022-44900
-------------------------------------------------------------------
Fri Jul 15 07:54:24 UTC 2022 - Ben Greiner <code@bnavigator.de>
- Update to version 0.19.0
* big changelog
- Move tests to multibuild
-------------------------------------------------------------------
Thu Jul 14 18:23:24 UTC 2022 - Ben Greiner <code@bnavigator.de>
- Remove ancient python-pathlib from the build requirements but
leave the version as is. An update to the latest version 0.19.0
would require to package many more dependencies.
- Clean up the spec-file a little bit
- Use pytest. No pure python package should ever be untested.
-------------------------------------------------------------------
Sat Apr 3 12:20:11 UTC 2021 - Ismail Dönmez <idonmez@suse.com>
- Fix sed line to use python3 and add a replacement for /usr/bin/python
as well.
-------------------------------------------------------------------
Fri Jan 22 11:45:55 UTC 2021 - ecsos <ecsos@opensuse.org>
- Initial version 0.11.3
View Git Blame Copy Permalink