[Buildroot] [PATCH] package/python: security bump to version 2.7.16
Peter Korsgaard
peter at korsgaard.com
Fri May 17 08:36:53 UTC 2019
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes the following security issues:
> - CVE-2013-1752: Change use of readline() in :class:`imaplib.IMAP4_SSL` to limit line length
> - CVE-2018-14647: The C accelerated _elementtree module now initializes hash
> randomization salt from _Py_HashSecret instead of libexpat's default
> CSPRNG.
> For more details, see the NEWS file:
> https://github.com/python/cpython/blob/v2.7.16/Misc/NEWS.d/2.7.16rc1.rst
> Refresh patches, drop now upstream
> package/python/0035-bpo-35746-Fix-segfault-in-ssl-s-cert-parser-GH-11569.patch
> and adjust hash of LICENSE file for a change of copyright years.
> run-tests results:
> 16:05:41 TestPython2 Starting
> 16:05:42 TestPython2 Building
> 16:11:26 TestPython2 Building done
> 16:11:32 TestPython2 Cleaning up
> .
> ----------------------------------------------------------------------
> Ran 1 test in 351.905s
> OK
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list