← Back to branch summary

~ubuntu-branches/ubuntu/hardy/python2.5/hardy-security

  • Committer: Package Import Robot
  • Author(s): Jamie Strandboge
  • Date: 2012-10-12 09:03:09 UTC
  • Revision ID: package-import@ubuntu.com-20121012090309-l0odpi5awghr66pt
Tags: 2.5.2-2ubuntu6.2
* SECURITY UPDATE: optionally disallow setting sys.path when setting
  sys.argv
  - debian/patches/CVE-2008-5983.dpatch: add new C API function,
    PySys_SetArgvEx
  - CVE-2008-5983
* SECURITY UPDATE: fix integer overflows in audioop module
  - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing
    overflow checks
  - CVE-2010-1634
* SECURITY UPDATE: fix DoS in audioop module
  - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length
    is a multiple of the frame size
  - CVE-2010-2089
* SECURITY UPDATE: Fix CGIHTTPServer information disclosure.
  - debian/patches/CVE-2011-1015.dpatch: Relative paths are now collapsed
    within the url properly before looking in cgi_directories.
  - CVE-2011-1015
* SECURITY UPDATE: update urllib and urllib2 for invalid redirections
  - debian/patches/CVE-2011-1521.dpatch: only process Location headers for
    http, https, and ftp
  - http://bugs.python.org/issue11662
  - CVE-2011-1521
* SECURITY UPDATE: fix XSS in SimpleHTTPServer
  - debian/patches/CVE-2011-4940.dpatch: add a charset parameter to the
    Content-type
  - CVE-2011-4940
* SECURE UPDATE: http://bugs.python.org/issue13512
  - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely
  - CVE-2011-4944
* SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon
  malformed POST request
  - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in
    Lib/SimpleXMLRPCServer.py
  - CVE-2012-0845
* SECURITY UPDATE: Denial of service via hash collisions
  - debian.patches/CVE-2012-0876+CVE-2012-1148.dpatch: Add random salt value
    to hash inputs in lib/xmlparse.c
  - CVE-2012-0876
* SECURITY UPDATE: Denial of service via memory leak
  - debian.patches/CVE-2012-0876+CVE-2012-1148.dpatch: Properly reallocate
    memory in lib/xmlparse.c
  - CVE-2012-1148
* SECURITY UPDATE: fix DoS in smtpd.py
  - debian/patches/CVE-2010-3493.dpatch: adds proper error handling on
    accept() when smtpd accepts new incoming connections
  - http://bugs.python.org/issue9129
  - CVE-2010-3493
Filename Latest Rev Last Changed Committer Comment Size
..
debian 2 17 years ago Bazaar Package Importer * Python 2.5 beta1 release. * Update to trunk 2006 Diff
Demo 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Doc 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Grammar 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Include 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Lib 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Mac 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Misc 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Modules 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Objects 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Parser 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
PC 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
PCbuild 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
PCbuild8 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Python 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
RISCOS 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
Tools 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 Diff
File configure 1.1.8 16 years ago Bazaar Package Importer Import upstream version 2.5.2 612 KB Diff Download File
configure.in 1.1.8 16 years ago Bazaar Package Importer Import upstream version 2.5.2 96.2 KB Diff Download File
File install-sh 1 17 years ago Bazaar Package Importer Import upstream version 2.4.3+2.5b1 6.9 KB Diff Download File
LICENSE 1.1.8 16 years ago Bazaar Package Importer Import upstream version 2.5.2 13.4 KB Diff Download File
Makefile.pre.in 1.1.8 16 years ago Bazaar Package Importer Import upstream version 2.5.2 34.5 KB Diff Download File
pyconfig.h.in 40 16 years ago Bazaar Package Importer * New upstream bugfix version. * Merge with Debian 26.6 KB Diff Download File
README 1.1.8 16 years ago Bazaar Package Importer Import upstream version 2.5.2 53.7 KB Diff Download File
setup.py 41 16 years ago Bazaar Package Importer Unapply deb-setup patch before upload. 67.4 KB Diff Download File