python/python-ujson
SHA256
15
0
Fork 0
forked from pool/python-ujson
Code Pull Requests Activity

- update to 5.4.0 (CVE-2022-31116, bsc#1201255, CVE-2022-31117, bsc#1201254):

Browse Source 
* Replace wchar_t string decoding implementation with a uint32_t-based one
  * Fix handling of surrogates on decoding
  * CVE-2022-31117: Potential double free of buffer during string decoding
  * Fix memory leak on encoding errors when the buffer was resized
  * Integer parsing: always detect overflows
  * Fix handling of surrogates on encoding

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-ujson?expand=0&rev=32
This commit is contained in:
Dirk Mueller
2022-07-08 11:58:48 +00:00
committed by Git OBS Bridge
parent ecc0d8fce2
commit a801bb98df
4 changed files with 15 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python-ujson.spec
View File

@@ -19,7 +19,7 @@
%{?!python_module:%define python_module() python3-%{**}}
%define skip_python2 1
Name: python-ujson
Version: 5.3.0
Version: 5.4.0
Release: 0
Summary: JSON encoder and decoder for Python
License: BSD-3-Clause