Accepting request 821971 from home:gmbr3:Active

- Update to version 3.8.5: - bpo-39603: Prevent http header injection by rejecting control characters in http.client.putrequest(…). - bpo-41295: a regression in CPython 3.8.4 where defining “__setattr__” in a multi-inheritance setup and calling up the hierarchy chain could fail if builtins/extension types were involved in the base types. - bpo-41288: Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now UnpicklingError instead of crashing. - bpo-39017: Avoid infinite loop when reading specially crafted TAR files using the tarfile module (CVE-2019-20907). - bpo-37703: Updated Documentation to comprehensively elaborate on the behaviour of gather.cancel() - bpo-41302: Enable building Python 3.8 with libmpdec-2.5.0 to ease maintenance for Linux distributions. Patch by Felix Yan. - bpo-41300: Save files with non-ascii chars. Fix regression released in 3.9.0b4 and 3.8.4. OBS-URL: https://build.opensuse.org/request/show/821971 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python38?expand=0&rev=21
2020-07-20 18:57:14 +00:00 · 2020-07-20 18:57:14 +00:00 · 0c680d8e86
commit 0c680d8e86
parent ec8e13b00e
6 changed files with 32 additions and 20 deletions
--- a/Python-3.8.4.tar.xz
+++ b/Python-3.8.4.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:5f41968a95afe9bc12192d7e6861aab31e80a46c46fa59d3d837def6a4cd4d37
-size 18020412
--- a/Python-3.8.4.tar.xz.asc
+++ b/Python-3.8.4.tar.xz.asc
@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEE4/8oOcBIslwITevpsmmV4xAlBWgFAl8MVeUACgkQsmmV4xAl
-BWjFAA/+IfMRFFDjpl+OJI4GgTIw+q4bvdB1AN/Rlq1yzNI3UP8jBb135SidcFMD
-H9Nn83H3rqzYPG5wStrouOdJavT670UMrm0F4iAr99eZuqmIVVtSS2D9Bodwucua
-d7QenmPGsmTce0jMmSjJ13VbO/BaBKeNlBAFWWsrco+sGExlGaUVlKyGoZr1OPkE
-dqQatNM3EUa54lqTQuDCkO2pPqmNsW5fluY5OE2BVG/dOPv/yvGmG1v2klCxsIje
-3/L+w7l6ggbAff1MTepbtxwDfjDNhITUEsD3musAb1jdEyrtJpEV52pSPYgNmh9o
-t6zutnJyazp/MQfb1sSgGskMjc2zo41dtPOmiPK68oCWXQIXH/2Vx79gG2X48LGg
-LUKVtP7cjx82klYGk3S5akiLkcayBMJQkhXYUeE1MTZz9aQ0/r1b3nNaE2/MIVdv
-res/wb05eXiIVDTDdFlcP8jtB3/+ZGrvwACWJ4agG5dO64DJ3YriQ3+6CNCFgLQW
-X6RW7Kzf1NRFkzBJu8/Qf7wW3+15ix7j3XPQVlW4Xg02lFckZ1ChNOvY5kYHub8C
-2Dy0P2pgICcMl5UbjRfvBP44485i6rvqV9tLQrN2Y/uVmBRmupTV5RrkJDCIBURz
-hCNDU2nvz18LkKdoUlUifgWxnYwaHDhu8hxW0W3/6p/PuDxmhbE=
-=dfUG
-----END PGP SIGNATURE-----
--- a/Python-3.8.5.tar.xz
+++ b/Python-3.8.5.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e3003ed57db17e617acb382b0cade29a248c6026b1bd8aad1f976e9af66a83b0
+size 18019640
--- a/Python-3.8.5.tar.xz.asc
+++ b/Python-3.8.5.tar.xz.asc
@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQIzBAABCgAdFiEE4/8oOcBIslwITevpsmmV4xAlBWgFAl8VnlAACgkQsmmV4xAl
+BWj2+Q/9FxlF7DPcVP3+9eHsW//aXpXNm/3hFZNlvpDX5Y0qsT4mOCFlqzBVVufY
+nXp+pz4l5HJGcvMfgW13aDVvl5HHK0WHEl7gI19wuE+1Ot3LO2Cq4sgNW3SzvmdF
+Dif3Ovvz1mE/S5LYXfLrsmOpU9oNe1oOiHX7l8WTBArMzCckc+e6TxRlLZw0NTr4
+8mgWu9+OTw8ltOSDyGZLrzXHoRssfSSLjjwxeDm2fLYo4YWj11Q6qIFp7dUEK23d
+Yv7o980fiw8VaxFFV3a/UH2EXVS+AL8Gxb7NpxS4ejtfPmLKnb0CHSjvnT45KqFi
+MfkV41ng4chW4CC14rugfd2QvC9a+EIKm3Hd1qt3iFIv1pn38w8wT5Nf7tMN9lhZ
+90eVh8nJAUHlAs+4Zz/crHwfxQ82pnf6TpIqJEJzaxQ3ncS0creG0jKwnWhLLheJ
+TVhqAxIENVbync7mfjHD2sNknC/YqiuUGSef13Wc3d15V26HqeUULiNupsZ9n6wr
+G1Llh+Wxld0kW7ht+1Gt1R1I9CsTYMWX3CvWCZVibh0ClT4r63n09kJGul4WdYp1
+IdjrEPgm0GMSRFuR1MN0qSCBkpGyYgikHJYw8fwykqi+MSp1Ibh/eO1DhuInyrbx
+Rb1FicRsRi7E9Tak9yXjKzAr67dPLcPwnblTkdRINFglAP3IiGo=
+=ussS
+-----END PGP SIGNATURE-----
--- a/python38.changes
+++ b/python38.changes
@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Mon Jul 20 17:46:54 UTC 2020 - Callum Farmer <callumjfarmer13@gmail.com>
+
+- Update  to version 3.8.5:
+  - bpo-39603: Prevent http header injection by rejecting control characters in http.client.putrequest(…).
+  - bpo-41295:  a regression in CPython 3.8.4 where defining “__setattr__” in a multi-inheritance setup and calling up the hierarchy chain could fail if builtins/extension types were involved in the base types.
+  - bpo-41288: Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now UnpicklingError instead of crashing.
+  - bpo-39017: Avoid infinite loop when reading specially crafted TAR files using the tarfile module (CVE-2019-20907).
+  - bpo-37703: Updated Documentation to comprehensively elaborate on the behaviour of gather.cancel()
+  - bpo-41302: Enable building Python 3.8 with libmpdec-2.5.0 to ease maintenance for Linux distributions. Patch by Felix Yan.
+  - bpo-41300: Save files with non-ascii chars. Fix regression released in 3.9.0b4 and 3.8.4.
+
 -------------------------------------------------------------------
 Fri Jul 17 06:39:45 UTC 2020 - Tomáš Chvátal <tchvatal@suse.com>

--- a/python38.spec
+++ b/python38.spec
@ -87,7 +87,7 @@
 %bcond_without profileopt
 %endif
 Name:           %{python_pkg_name}%{psuffix}
-Version:        3.8.4
+Version:        3.8.5
 Release:        0
 Summary:        Python 3 Interpreter
 License:        Python-2.0