Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Jamie Strandboge
Revision Date: 2012-10-23 10:55:06 UTC

* SECURE UPDATE: http://bugs.python.org/issue13512
  - debian/patches/CVE-2011-4944.diff: create ~/.pypirc securely
  - CVE-2011-4944
* SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon
  malformed POST request
  - debian/patches/CVE-2012-0845.diff: break if don't receive EOF in
    Lib/SimpleXMLRPCServer.py
  - CVE-2012-0845
* SECURITY UPDATE: fix hash randomization DoS
  - debian/patches/CVE-2012-1150.diff: add -R command-line option and
    PYTHONHASHSEED environment variable, to provide an opt-in way to protect
    against denial of service attacks due to hash collisions within the dict
    and set types.
  - CVE-2012-1150
* SECURITY UPDATE: http://bugs.python.org/issue14579
  - debian/patches/CVE-2012-2135.diff: fix vulnerability in the utf-16
    decoder after error handling
  - CVE-2012-2135

Author: Jamie Strandboge
Revision Date: 2012-10-23 10:55:06 UTC

* SECURE UPDATE: http://bugs.python.org/issue13512
  - debian/patches/CVE-2011-4944.diff: create ~/.pypirc securely
  - CVE-2011-4944
* SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon
  malformed POST request
  - debian/patches/CVE-2012-0845.diff: break if don't receive EOF in
    Lib/SimpleXMLRPCServer.py
  - CVE-2012-0845
* SECURITY UPDATE: fix hash randomization DoS
  - debian/patches/CVE-2012-1150.diff: add -R command-line option and
    PYTHONHASHSEED environment variable, to provide an opt-in way to protect
    against denial of service attacks due to hash collisions within the dict
    and set types.
  - CVE-2012-1150
* SECURITY UPDATE: http://bugs.python.org/issue14579
  - debian/patches/CVE-2012-2135.diff: fix vulnerability in the utf-16
    decoder after error handling
  - CVE-2012-2135

Author: Jamie Strandboge
Revision Date: 2012-10-23 09:34:32 UTC

* SECURITY UPDATE: optionally disallow setting sys.path when setting
  sys.argv
  - debian/patches/CVE-2008-5983.dpatch: add new C API function,
    PySys_SetArgvEx
  - CVE-2008-5983
* SECURITY UPDATE: fix integer overflows in audioop module
  - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing
    overflow checks
  - CVE-2010-1634
* SECURITY UPDATE: fix DoS in audioop module
  - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length
    is a multiple of the frame size
  - CVE-2010-2089
* SECURE UPDATE: http://bugs.python.org/issue13512
  - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely
  - CVE-2011-4944
* SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon
  malformed POST request
  - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in
    Lib/SimpleXMLRPCServer.py
  - CVE-2012-0845
* SECURITY UPDATE: fix hash randomization DoS
  - debian/patches/CVE-2012-1150.dpatch: add -R command-line option and
    PYTHONHASHSEED environment variable, to provide an opt-in way to protect
    against denial of service attacks due to hash collisions within the dict
    and set types.
  - CVE-2012-1150
* SECURITY UPDATE: http://bugs.python.org/issue14579
  - debian/patches/CVE-2012-2135.dpatch: fix vulnerability in the utf-16
    decoder after error handling
  - CVE-2012-2135

Author: Jamie Strandboge
Revision Date: 2012-10-23 09:34:32 UTC

* SECURITY UPDATE: optionally disallow setting sys.path when setting
  sys.argv
  - debian/patches/CVE-2008-5983.dpatch: add new C API function,
    PySys_SetArgvEx
  - CVE-2008-5983
* SECURITY UPDATE: fix integer overflows in audioop module
  - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing
    overflow checks
  - CVE-2010-1634
* SECURITY UPDATE: fix DoS in audioop module
  - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length
    is a multiple of the frame size
  - CVE-2010-2089
* SECURE UPDATE: http://bugs.python.org/issue13512
  - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely
  - CVE-2011-4944
* SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon
  malformed POST request
  - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in
    Lib/SimpleXMLRPCServer.py
  - CVE-2012-0845
* SECURITY UPDATE: fix hash randomization DoS
  - debian/patches/CVE-2012-1150.dpatch: add -R command-line option and
    PYTHONHASHSEED environment variable, to provide an opt-in way to protect
    against denial of service attacks due to hash collisions within the dict
    and set types.
  - CVE-2012-1150
* SECURITY UPDATE: http://bugs.python.org/issue14579
  - debian/patches/CVE-2012-2135.dpatch: fix vulnerability in the utf-16
    decoder after error handling
  - CVE-2012-2135

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Jamie Strandboge
Revision Date: 2011-12-09 09:05:43 UTC

* SECURITY UPDATE: only process Location headers for http, https, and ftp
  - http://bugs.python.org/issue11662
  - CVE-2011-1521

Author: Jamie Strandboge
Revision Date: 2011-12-09 09:05:43 UTC

* SECURITY UPDATE: only process Location headers for http, https, and ftp
  - http://bugs.python.org/issue11662
  - CVE-2011-1521

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2011-03-25 18:05:31 UTC

Search libraries in multiarch directories too. LP: #738213.

Author: Matthias Klose
Revision Date: 2010-09-20 14:31:19 UTC

* Assume working semaphores, don't rely on running kernel for the check.
  LP: #630511.
* Disable test_threading test on powerpc, which fail on the buildds.

Author: Matthias Klose
Revision Date: 2010-09-17 15:11:53 UTC

Disable test_threading test on powerpc, which fail on the buildds.

Author: Matthias Klose
Revision Date: 2010-04-14 23:54:59 UTC

* Overwrite the sem_open autoconf check, depending on a newer
  kernel version not available on the buildd. LP: #556477.
* debian/patches/issue8032.dpatch: Update to version from the
  trunk. Upload for beta2 to avoid apport errors.
  - Handle PyFrameObject's: LP: #543624, #548723.
  - Detect cycles in object reference graph and add extra
    protection: LP: #544823, LP: #552356.

Author: Matthias Klose
Revision Date: 2009-10-11 19:59:17 UTC

* Update to the 3.1 release branch, 20091011.
* Remove /usr/local/lib/python3.1 on package removal, if empty.
* Build _hashlib as a builtin. LP: #445530.
* python3.1-doc: Don't compress the sphinx inventory.
* python3.1-doc: Fix jquery.js symlink. LP: #447370.
* Run the benchmark with -C 2 -n 5 -w 4 on all architectures.
* python3.1-dbg: Don't create debug subdirectory in /usr/local. No
  separate debug directory needed anymore.

Author: Matthias Klose
Revision Date: 2009-11-02 12:38:24 UTC

* distutils install: Don't install into /usr/local/local, if option
  --prefix=/usr/local is present. LP: #456917.
* python3.1-doc: Fix searching in local documentation. LP: #456025.

Author: Matthias Klose
Revision Date: 2009-11-02 12:38:24 UTC

* distutils install: Don't install into /usr/local/local, if option
  --prefix=/usr/local is present. LP: #456917.
* python3.1-doc: Fix searching in local documentation. LP: #456025.