[Buildroot] [PATCH] package/python3: security bump to version 3.9.2
Peter Korsgaard
peter at korsgaard.com
Thu Mar 4 20:24:17 UTC 2021
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
>> Fixes the following security issue:
>> - CVE-2021-23336: urllib.parse.parse_qsl(): Web cache poisoning - `; ` as a
>> query args separator
>> https://bugs.python.org/issue42967
>> And fixes a number of issues. For details, see the changelog:
>> https://docs.python.org/release/3.9.2/whatsnew/changelog.html
>> Drop the now upstreamed security patch and update the license hash for a
>> change of copyright year:
>> -2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020 Python Software Foundation;
>> +2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021 Python Software Foundation;
>> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2020.11.x, thanks. For 2020.02.x, I will instead bump to
3.8.8.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list