Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python39 for openSUSE:Factory
checked in at 2022-09-17 20:08:13
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python39 (Old)
and /work/SRC/openSUSE:Factory/.python39.new.2083 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python39"
Sat Sep 17 20:08:13 2022 rev:34 rq:1003029 version:3.9.14
Changes:
--------
--- /work/SRC/openSUSE:Factory/python39/python39.changes 2022-09-03
23:18:36.199740946 +0200
+++ /work/SRC/openSUSE:Factory/.python39.new.2083/python39.changes
2022-09-17 20:08:16.960800783 +0200
@@ -1,0 +2,41 @@
+Sun Sep 11 08:49:43 UTC 2022 - Matej Cepl <mc...@suse.com>
+
+- Update to 3.9.14:
+ - (CVE-2020-10735, bsc#1203125). Converting between int
+ and str in bases other than 2 (binary), 4, 8 (octal), 16
+ (hexadecimal), or 32 such as base 10 (decimal) now raises a
+ ValueError if the number of digits in string form is above a
+ limit to avoid potential denial of service attacks due to the
+ algorithmic complexity.
+ This new limit can be configured or disabled by environment
+ variable, command line flag, or sys APIs. See the integer
+ string conversion length limitation documentation. The
+ default limit is 4300 digits in string form.
+ - Also other bug fixes:
+ - http.server: Fix an open redirection vulnerability in the
+ HTTP server when an URI path starts with //. Vulnerability
+ discovered, and initial fix proposed, by Hamza Avvan.
+ - Fix contextvars HAMT implementation to handle iteration
+ over deep trees. The bug was discovered and fixed by Eli
+ Libman. See MagicStack/immutables#84 for more details.
+ - Fix binding of unix socket to empty address on Linux to use
+ an available address from the abstract namespace, instead
+ of ???0???.
+ - Suppress writing an XML declaration in open files
+ in ElementTree.write() with encoding='unicode' and
+ xml_declaration=None.
+ - Fix the formatting for await x and not x in the operator
+ precedence table when using the help() system.
+ - Fix ensurepip environment isolation for subprocess running
+ pip.
+ - Fix problem with test_ssl test_get_ciphers on systems that
+ require perfect forward secrecy (PFS) ciphers.
+ - test_ssl is now checking for supported TLS version and
+ protocols in more tests.
+- Removed upstreamed patches:
+ - CVE-2021-28861-double-slash-path.patch
+- Realign patches:
+ - bpo-31046_ensurepip_honours_prefix.patch
+ - sphinx-update-removed-function.patch
+
+-------------------------------------------------------------------
Old:
----
CVE-2021-28861-double-slash-path.patch
Python-3.9.13.tar.xz
Python-3.9.13.tar.xz.asc
New:
----
Python-3.9.14.tar.xz
Python-3.9.14.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python39.spec ++++++
--- /var/tmp/diff_new_pack.ALdwOb/_old 2022-09-17 20:08:18.180804303 +0200
+++ /var/tmp/diff_new_pack.ALdwOb/_new 2022-09-17 20:08:18.184804315 +0200
@@ -57,7 +57,7 @@
%define tarversion %{version}
%endif
# We don't process beta signs well
-%define folderversion 3.9.13
+%define folderversion %{version}
%define tarname Python-%{tarversion}
%define sitedir %{_libdir}/python%{python_version}
# three possible ABI kinds: m - pymalloc, d - debug build; see PEP 3149
@@ -93,7 +93,7 @@
%define dynlib()
%{sitedir}/lib-dynload/%{1}.cpython-%{abi_tag}-%{archname}-%{_os}%{?_gnu}%{?armsuffix}.so
%bcond_without profileopt
Name: %{python_pkg_name}%{psuffix}
-Version: 3.9.13
+Version: 3.9.14
Release: 0
Summary: Python 3 Interpreter
License: Python-2.0
@@ -161,9 +161,6 @@
# PATCH-FIX-UPSTREAM CVE-2015-20107-mailcap-unsafe-filenames.patch bsc#1198511
mc...@suse.com
# avoid the command injection in the mailcap module.
Patch36: CVE-2015-20107-mailcap-unsafe-filenames.patch
-# PATCH-FIX-UPSTREAM CVE-2021-28861 bsc#1202624 gh#python/cpython#94093
-# Coerce // to / in Lib/http/server.py
-Patch37: CVE-2021-28861-double-slash-path.patch
BuildRequires: autoconf-archive
BuildRequires: automake
BuildRequires: fdupes
@@ -423,7 +420,6 @@
%endif
%patch35 -p1
%patch36 -p1
-%patch37 -p1
# drop Autoconf version requirement
sed -i 's/^AC_PREREQ/dnl AC_PREREQ/' configure.ac
++++++ Python-3.9.13.tar.xz -> Python-3.9.14.tar.xz ++++++
/work/SRC/openSUSE:Factory/python39/Python-3.9.13.tar.xz
/work/SRC/openSUSE:Factory/.python39.new.2083/Python-3.9.14.tar.xz differ: char
26, line 1
++++++ bpo-31046_ensurepip_honours_prefix.patch ++++++
--- /var/tmp/diff_new_pack.ALdwOb/_old 2022-09-17 20:08:18.280804592 +0200
+++ /var/tmp/diff_new_pack.ALdwOb/_new 2022-09-17 20:08:18.284804603 +0200
@@ -55,7 +55,7 @@
.. note::
--- a/Lib/ensurepip/__init__.py
+++ b/Lib/ensurepip/__init__.py
-@@ -52,27 +52,27 @@ def _disable_pip_configuration_settings(
+@@ -57,27 +57,27 @@ def _disable_pip_configuration_settings(
os.environ['PIP_CONFIG_FILE'] = os.devnull
@@ -88,7 +88,7 @@
Note that calling this function will alter both sys.path and os.environ.
"""
-@@ -115,6 +115,8 @@ def _bootstrap(*, root=None, upgrade=Fal
+@@ -120,6 +120,8 @@ def _bootstrap(*, root=None, upgrade=Fal
args = ["install", "--no-cache-dir", "--no-index", "--find-links",
tmpdir]
if root:
args += ["--root", root]
@@ -97,7 +97,7 @@
if upgrade:
args += ["--upgrade"]
if user:
-@@ -187,6 +189,11 @@ def _main(argv=None):
+@@ -192,6 +194,11 @@ def _main(argv=None):
help="Install everything relative to this alternate root directory.",
)
parser.add_argument(
@@ -109,7 +109,7 @@
"--altinstall",
action="store_true",
default=False,
-@@ -205,6 +212,7 @@ def _main(argv=None):
+@@ -210,6 +217,7 @@ def _main(argv=None):
return _bootstrap(
root=args.root,
@@ -139,7 +139,7 @@
--- a/Makefile.pre.in
+++ b/Makefile.pre.in
-@@ -1262,7 +1262,7 @@ install: @FRAMEWORKINSTALLFIRST@ commoni
+@@ -1263,7 +1263,7 @@ install: @FRAMEWORKINSTALLFIRST@ commoni
install|*) ensurepip="" ;; \
esac; \
$(RUNSHARED) $(PYTHON_FOR_BUILD) -m ensurepip \
@@ -148,7 +148,7 @@
fi
altinstall: commoninstall
-@@ -1272,7 +1272,7 @@ altinstall: commoninstall
+@@ -1273,7 +1273,7 @@ altinstall: commoninstall
install|*) ensurepip="--altinstall" ;; \
esac; \
$(RUNSHARED) $(PYTHON_FOR_BUILD) -m ensurepip \
++++++ sphinx-update-removed-function.patch ++++++
--- /var/tmp/diff_new_pack.ALdwOb/_old 2022-09-17 20:08:18.376804869 +0200
+++ /var/tmp/diff_new_pack.ALdwOb/_new 2022-09-17 20:08:18.376804869 +0200
@@ -4,7 +4,7 @@
--- a/Doc/tools/extensions/pyspecific.py
+++ b/Doc/tools/extensions/pyspecific.py
-@@ -362,7 +362,12 @@ class DeprecatedRemoved(Directive):
+@@ -385,7 +385,12 @@ class DeprecatedRemoved(Directive):
translatable=False)
node.append(para)
env = self.state.document.settings.env
