1. Forum
  2. Usenet
  3. LINUX.DEBIAN.CHANGES

  • Accepted python3.11 3.11.2-6+deb12u4 (source) into proposed-updates

    From Debian FTP Masters@21:1/5 to All on Thu Oct 10 18:40:01 2024
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA256

    Format: 1.8
    Date: Sat, 14 Sep 2024 00:00:30 -0300
    Source: python3.11
    Architecture: source
    Version: 3.11.2-6+deb12u4
    Distribution: bookworm
    Urgency: medium
    Maintainer: Matthias Klose <doko@debian.org>
    Changed-By: Santiago Ruano Rincón <santiagorr@riseup.net>
    Closes: 1080245
    Changes:
    python3.11 (3.11.2-6+deb12u4) bookworm; urgency=medium
    .
    * Fix zipfile.Path regression introduced by 3.11.2-6+deb12u3
    (Closes: 1080245)
    * Fix CVE-2024-6232: Regular expressions that allowed excessive backtracking
    during tarfile.TarFile header parsing are vulnerable to ReDoS via
    specifically-crafted tar archives
    Checksums-Sha1:
    438f12c71ea1585ef3ca084dd084f4e963d13416 3038 python3.11_3.11.2-6+deb12u4.dsc
    ca72de7308c395e25cd10633c763beb1241b83e9 234696 python3.11_3.11.2-6+deb12u4.debian.tar.xz
    8a60f1b179afe640e1bf1cadf5e1fb9ec5d11bda 15482 python3.11_3.11.2-6+deb12u4_amd64.buildinfo
    Checksums-Sha256:
    e8e7d82e32e667e9aac3c9b17f65fd7544faf0f68b115893c9983070ff92f33b 3038 python3.11_3.11.2-6+deb12u4.dsc
    4091c337a85742825c074f6111733eea0305c82b085fa57646dab5572f70f90f 234696 python3.11_3.11.2-6+deb12u4.debian.tar.xz
    8937896f426b3f8e608f8eaa53da31334eb7de03668889ed985b559f3bc77537 15482 python3.11_3.11.2-6+deb12u4_amd64.buildinfo
    Files:
    2fd900f7bdb19c5ae4cbcadfa8bc210a 3038 python optional python3.11_3.11.2-6+deb12u4.dsc
    a75b8a9a23cd87afbbb23c5d135ec61b 234696 python optional python3.11_3.11.2-6+deb12u4.debian.tar.xz
    89f92f38a40e8262b3e4d9dc78657d98 15482 python optional python3.11_3.11.2-6+deb12u4_amd64.buildinfo

    -----BEGIN PGP SIGNATURE-----

    iHUEARYIAB0WIQR+lHTq7mkJOyB6t2Un3j1FEEiG7wUCZvlhnwAKCRAn3j1FEEiG 791mAP0UulR76MAwuKOeeo+2PKZkwg22dXPzoHhAlP5SLBDXOgD7B/se8PkMgwDD Pp15USKVZsPYFQnQTEWZY8Xe5Boh+QY=
    =PD4D
    -----END PGP SIGNATURE-----


    --==============62283116901319262=Content-Type: application/pgp-signature

    -----BEGIN PGP SIGNATURE-----

    iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCZwgBiAAKCRCb9qggYcy5 Ie9NAP41rai57/bZNjD1Eagf3OJcCTe1J5Yng/cSrgDzBJvCCgD9EEQlY9w1Ed+l za7AxN61dSwrbO28Eoc2NqUjqh6Y/QM=vBJ7
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)