rpm/python38
SHA256
1
0
Fork 0
forked from pool/python38
Code Pull Requests Activity

- Update to 3.8.8:

Browse Source 
- bpo#42938 (bsc#1181126): Avoid static buffers when computing
    the repr of ctypes.c_double and ctypes.c_longdouble
    values. This issue was assigned CVE-2021-3177.
  - bpo#42967 (bso#1182379): Fix web cache poisoning
    vulnerability by defaulting the query args separator to &,
    and allowing the user to choose a custom separator. This
    issue was assigned CVE-2021-23336.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python38?expand=0&rev=53
This commit is contained in:
Matej Cepl
2021-02-19 16:53:23 +00:00
committed by Git OBS Bridge
parent 93edfc4871
commit c36a6fcb46
9 changed files with 34 additions and 281 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
python38.changes
View File

@@ -1,3 +1,15 @@
-------------------------------------------------------------------
Fri Feb 19 16:40:59 UTC 2021 - Matej Cepl <mcepl@suse.com>
- Update to 3.8.8:
- bpo#42938 (bsc#1181126): Avoid static buffers when computing
the repr of ctypes.c_double and ctypes.c_longdouble
values. This issue was assigned CVE-2021-3177.
- bpo#42967 (bso#1182379): Fix web cache poisoning
vulnerability by defaulting the query args separator to &,
and allowing the user to choose a custom separator. This
issue was assigned CVE-2021-23336.
-------------------------------------------------------------------
Tue Feb 9 01:37:01 UTC 2021 - Steve Kowalik <steven.kowalik@suse.com>