CVS commit: pkgsrc/lang/python26

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/lang/python26
From: "OBATA Akio" <obache%netbsd.org@localhost>
Date: Sat, 14 Apr 2012 10:47:20 +0000
Module Name:    pkgsrc
Committed By:   obache
Date:           Sat Apr 14 10:47:19 UTC 2012

Modified Files:
        pkgsrc/lang/python26: Makefile dist.mk distinfo
        pkgsrc/lang/python26/patches: patch-au
Removed Files:
        pkgsrc/lang/python26/patches: patch-CVE-2012-0845
            patch-CVE-2012-1150-Doc_library_sys.rst
            patch-CVE-2012-1150-Doc_reference_datamodel.rst
            patch-CVE-2012-1150-Doc_using_cmdline.rst
            patch-CVE-2012-1150-Include_object.h
            patch-CVE-2012-1150-Include_pydebug.h
            patch-CVE-2012-1150-Include_pythonrun.h
            patch-CVE-2012-1150-Lib_os.py
            patch-CVE-2012-1150-Lib_test_test_cmd_line.py
            patch-CVE-2012-1150-Lib_test_test_hash.py
            patch-CVE-2012-1150-Lib_test_test_os.py
            patch-CVE-2012-1150-Lib_test_test_set.py
            patch-CVE-2012-1150-Lib_test_test_support.py
            patch-CVE-2012-1150-Lib_test_test_symtable.py
            patch-CVE-2012-1150-Lib_test_test_sys.py
            patch-CVE-2012-1150-Misc_NEWS patch-CVE-2012-1150-Misc_python.man
            patch-CVE-2012-1150-Modules_main.c
            patch-CVE-2012-1150-Modules_posixmodule.c
            patch-CVE-2012-1150-Objects_bufferobject.c
            patch-CVE-2012-1150-Objects_object.c
            patch-CVE-2012-1150-Objects_stringobject.c
            patch-CVE-2012-1150-Objects_unicodeobject.c
            patch-CVE-2012-1150-PCbuild_pythoncore.vcproj
            patch-CVE-2012-1150-Python_pythonrun.c
            patch-CVE-2012-1150-Python_random.c
            patch-CVE-2012-1150-Python_sysmodule.c

Log Message:
Update python26 to 2.6.8.
(CVE-2012-0845, CVE-2012-1150 are alredy fixed in pkgsrc,
 CVE-2012-0876 is not affect to pkgsrc, using external expat)

What's New in Python 2.6.8?
===========================

*Release date: 2012-04-10*

No changes since 2.6.8rc2.

What's New in Python 2.6.8 rc 2?
================================

*Release date: 2012-03-17*

Library
-------

- Issue #14234: CVE-2012-0876: Randomize hashes of xml attributes in the hash
  table internal to the pyexpat module's copy of the expat library to avoid a
  denial of service due to hash collisions.  Patch by David Malcolm with some
  modifications by the expat project.

What's New in Python 2.6.8 rc 1?
================================

*Release date: 2012-02-23*

Core and Builtins
-----------------

- Issue #13703: oCERT-2011-003 CVE-2012-1150: add -R command-line
  option and PYTHONHASHSEED environment variable, to provide an opt-in
  way to protect against denial of service attacks due to hash
  collisions within the dict and set types.  Patch by David Malcolm,
  based on work by Victor Stinner.

Library
-------

- Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in
  SimpleXMLRPCServer upon malformed POST request.

- Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC
  IV attack countermeasure.


To generate a diff of this commit:
cvs rdiff -u -r1.46 -r1.47 pkgsrc/lang/python26/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/lang/python26/dist.mk
cvs rdiff -u -r1.44 -r1.45 pkgsrc/lang/python26/distinfo
cvs rdiff -u -r1.1 -r0 pkgsrc/lang/python26/patches/patch-CVE-2012-0845 \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Doc_library_sys.rst \
    
pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Doc_reference_datamodel.rst \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Doc_using_cmdline.rst \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Include_object.h \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Include_pydebug.h \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Include_pythonrun.h \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_os.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_cmd_line.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_hash.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_os.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_set.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_support.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_symtable.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Lib_test_test_sys.py \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Misc_NEWS \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Misc_python.man \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Modules_main.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Modules_posixmodule.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Objects_bufferobject.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Objects_object.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Objects_stringobject.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Objects_unicodeobject.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-PCbuild_pythoncore.vcproj \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Python_pythonrun.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Python_random.c \
    pkgsrc/lang/python26/patches/patch-CVE-2012-1150-Python_sysmodule.c
cvs rdiff -u -r1.8 -r1.9 pkgsrc/lang/python26/patches/patch-au

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Prev by Date: CVS commit: pkgsrc/audio/mp3blaster
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/audio/mp3blaster
Next by Thread: CVS commit: pkgsrc/doc
Indexes:
Home | Main Index | Thread Index | Old Index