CVS commit: pkgsrc/lang

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/lang
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Mon, 12 Sep 2022 07:58:55 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Mon Sep 12 07:58:55 UTC 2022

Modified Files:
        pkgsrc/lang/py37-html-docs: Makefile distinfo
        pkgsrc/lang/python37: PLIST dist.mk distinfo
Removed Files:
        pkgsrc/lang/python37/patches: patch-Lib_ctypes_test_test__macholib.py

Log Message:
python37 py37-html-docs: updated to 3.7.14

Python 3.7.14

Security
gh-95778: Converting between int and str in bases other than 2 (binary), 4, 8 (octal), 16 (hexadecimal), or 32 such as base 10 (decimal) now raises a ValueError if the number of digits in string form 
is above a limit to avoid potential denial of service attacks due to the algorithmic complexity. This is a mitigation for CVE-2020-10735.

This new limit can be configured or disabled by environment variable, command line flag, or sys APIs. See the integer string conversion length limitation documentation. The default limit is 4300 
digits in string form.

Patch by Gregory P. Smith [Google] and Christian Heimes [Red Hat] with feedback from Victor Stinner, Thomas Wouters, Steve Dower, Ned Deily, and Mark Dickinson.
gh-87389: http.server: Fix an open redirection vulnerability in the HTTP server when an URI path starts with //. Vulnerability discovered, and initial fix proposed, by Hamza Avvan.

Core and Builtins
gh-93065: Fix contextvars HAMT implementation to handle iteration over deep trees.

The bug was discovered and fixed by Eli Libman. See MagicStack/immutables#84 for more details.

Library
bpo-36073: Raise ProgrammingError instead of segfaulting on recursive usage of cursors in sqlite3 converters. Patch by Sergey Fedoseev.

Documentation
gh-91888: Add a new gh role to the documentation to link to GitHub issues.
bpo-47138: Pin Jinja to a version compatible with Sphinx version 2.3.1.

Tests
gh-94208: test_ssl is now checking for supported TLS version and protocols in more tests.
bpo-47016: Create a GitHub Actions workflow for verifying bundled pip and setuptools. Patch by Illia Volochii and Adam Turner.
bpo-41306: Fixed a failure in test_tk.test_widgets.ScaleTest happening when executing the test with Tk 8.6.10.

Windows
bpo-47194: Update zlib to v1.2.12 to resolve CVE-2018-25032.


To generate a diff of this commit:
cvs rdiff -u -r1.14 -r1.15 pkgsrc/lang/py37-html-docs/Makefile
cvs rdiff -u -r1.16 -r1.17 pkgsrc/lang/py37-html-docs/distinfo
cvs rdiff -u -r1.14 -r1.15 pkgsrc/lang/python37/PLIST \
    pkgsrc/lang/python37/dist.mk
cvs rdiff -u -r1.32 -r1.33 pkgsrc/lang/python37/distinfo
cvs rdiff -u -r1.1 -r0 \
    pkgsrc/lang/python37/patches/patch-Lib_ctypes_test_test__macholib.py

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/lang/py37-html-docs/Makefile
diff -u pkgsrc/lang/py37-html-docs/Makefile:1.14 pkgsrc/lang/py37-html-docs/Makefile:1.15
--- pkgsrc/lang/py37-html-docs/Makefile:1.14    Sat Mar 19 18:55:44 2022
+++ pkgsrc/lang/py37-html-docs/Makefile Mon Sep 12 07:58:55 2022
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.14 2022/03/19 18:55:44 adam Exp $
+# $NetBSD: Makefile,v 1.15 2022/09/12 07:58:55 adam Exp $
 
-VERS=          3.7.13
+VERS=          3.7.14
 DISTNAME=      python-${VERS}-docs-html
 PKGNAME=       py37-html-docs-${VERS}
 CATEGORIES=    lang python

Index: pkgsrc/lang/py37-html-docs/distinfo
diff -u pkgsrc/lang/py37-html-docs/distinfo:1.16 pkgsrc/lang/py37-html-docs/distinfo:1.17
--- pkgsrc/lang/py37-html-docs/distinfo:1.16    Sat Mar 19 18:55:44 2022
+++ pkgsrc/lang/py37-html-docs/distinfo Mon Sep 12 07:58:55 2022
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.16 2022/03/19 18:55:44 adam Exp $
+$NetBSD: distinfo,v 1.17 2022/09/12 07:58:55 adam Exp $
 
-BLAKE2s (python-3.7.13-docs-html.tar.bz2) = 6a07df39e71a7bad454ef05b621a6fbc23b4725ceb7b68b52ce6b83488a612b9
-SHA512 (python-3.7.13-docs-html.tar.bz2) = a55b43d90f6677e89870001c88106250b695a02ec01832954cce17e1291d259e8440d379ad91f7e0ed1ac3aa1380da28c3a75f29609b881a8f2bad6bf8f79189
-Size (python-3.7.13-docs-html.tar.bz2) = 6289395 bytes
+BLAKE2s (python-3.7.14-docs-html.tar.bz2) = ce73ec6eca5399685f8c2cd8371d153b8c4385ad6fc82ace3d88a081bc1c1f6a
+SHA512 (python-3.7.14-docs-html.tar.bz2) = 385e595fd0183d721e856b40f662ce8aca8f10ed189633830a0c1e4c3b2cb509e317a205f9a60143102ece4fa856e81050ae3fddc02b01a3af5a43c02468fcf4
+Size (python-3.7.14-docs-html.tar.bz2) = 6276520 bytes

Index: pkgsrc/lang/python37/PLIST
diff -u pkgsrc/lang/python37/PLIST:1.14 pkgsrc/lang/python37/PLIST:1.15
--- pkgsrc/lang/python37/PLIST:1.14     Sat Mar 19 18:55:44 2022
+++ pkgsrc/lang/python37/PLIST  Mon Sep 12 07:58:55 2022
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.14 2022/03/19 18:55:44 adam Exp $
+@comment $NetBSD: PLIST,v 1.15 2022/09/12 07:58:55 adam Exp $
 bin/2to3-${PY_VER_SUFFIX}
 bin/pydoc${PY_VER_SUFFIX}
 bin/python${PY_VER_SUFFIX}
@@ -49,6 +49,7 @@ include/python${PY_VER_SUFFIX}/internal/
 include/python${PY_VER_SUFFIX}/internal/hash.h
 include/python${PY_VER_SUFFIX}/internal/import.h
 include/python${PY_VER_SUFFIX}/internal/mem.h
+include/python${PY_VER_SUFFIX}/internal/pycore_long.h
 include/python${PY_VER_SUFFIX}/internal/pygetopt.h
 include/python${PY_VER_SUFFIX}/internal/pystate.h
 include/python${PY_VER_SUFFIX}/internal/warnings.h
Index: pkgsrc/lang/python37/dist.mk
diff -u pkgsrc/lang/python37/dist.mk:1.14 pkgsrc/lang/python37/dist.mk:1.15
--- pkgsrc/lang/python37/dist.mk:1.14   Sat Mar 19 18:55:44 2022
+++ pkgsrc/lang/python37/dist.mk        Mon Sep 12 07:58:55 2022
@@ -1,6 +1,6 @@
-# $NetBSD: dist.mk,v 1.14 2022/03/19 18:55:44 adam Exp $
+# $NetBSD: dist.mk,v 1.15 2022/09/12 07:58:55 adam Exp $
 
-PY_DISTVERSION=        3.7.13
+PY_DISTVERSION=        3.7.14
 DISTNAME=      Python-${PY_DISTVERSION}
 EXTRACT_SUFX=  .tar.xz
 DISTINFO_FILE= ${.CURDIR}/../../lang/python37/distinfo

Index: pkgsrc/lang/python37/distinfo
diff -u pkgsrc/lang/python37/distinfo:1.32 pkgsrc/lang/python37/distinfo:1.33
--- pkgsrc/lang/python37/distinfo:1.32  Sat Mar 19 18:55:44 2022
+++ pkgsrc/lang/python37/distinfo       Mon Sep 12 07:58:55 2022
@@ -1,12 +1,11 @@
-$NetBSD: distinfo,v 1.32 2022/03/19 18:55:44 adam Exp $
+$NetBSD: distinfo,v 1.33 2022/09/12 07:58:55 adam Exp $
 
-BLAKE2s (Python-3.7.13.tar.xz) = 5461496d4a208a52f80362a7045095aafb4996ca1f9a6647e68d96c12e38f253
-SHA512 (Python-3.7.13.tar.xz) = e95366b68c1bc1dc1cfb2d956f1f49c5d0f620b4780d03002b3c321d2788108eb4e51d224cfa6bcecf7d780e9024ab0ef88b422d6d25e983dbc56b2a89b7dce9
-Size (Python-3.7.13.tar.xz) = 18027980 bytes
+BLAKE2s (Python-3.7.14.tar.xz) = 67239d49031f78c57ec14dcb96beb338cae1fa1dc90f3df5c9e60db2fe3cfdfb
+SHA512 (Python-3.7.14.tar.xz) = 8951d927c848ab0500e7093e80a9c9f98cc4d5e408031dce2ac06c8fc2326511b2b3abada01b89ccc4c148236091bb0addbe9a086135f28a504a857a2e52c7f5
+Size (Python-3.7.14.tar.xz) = 18121168 bytes
 SHA1 (patch-Lib___osx__support.py) = dbec9925c1a0b6b845101df9825af52d83317773
 SHA1 (patch-Lib_ctypes_____init____.py) = ded12eb372028288d85ba88b43e45549c6f48144
 SHA1 (patch-Lib_ctypes_macholib_dyld.py) = 267f0b39f116bc9df0b24c277b48ce59cfecd397
-SHA1 (patch-Lib_ctypes_test_test__macholib.py) = 76bb73619e5a27aa1009d4c65e3be1f69b9b6e91
 SHA1 (patch-Lib_ctypes_util.py) = 032cc99ebad93ddddfd89073c60424a952e3faa3
 SHA1 (patch-Lib_distutils_sysconfig.py) = 6822eafb4dfded86d7f7353831816aeb8119e6cf
 SHA1 (patch-Lib_distutils_unixccompiler.py) = 2e65a8dd5dd3fe25957206c062106fa7a6fc4e69

Prev by Date: CVS commit: pkgsrc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index