~ubuntu-branches/ubuntu/natty/python3.1/natty-updates

Viewing all changes in revision 27.

  • Committer: Package Import Robot
  • Author(s): Jamie Strandboge
  • Date: 2012-10-23 10:55:06 UTC
  • Revision ID: package-import@ubuntu.com-20121023105506-1fv32eeuiouafm5v
Tags: 3.1.3-1ubuntu1.2
* SECURE UPDATE: http://bugs.python.org/issue13512
  - debian/patches/CVE-2011-4944.diff: create ~/.pypirc securely
  - CVE-2011-4944
* SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon
  malformed POST request
  - debian/patches/CVE-2012-0845.diff: break if don't receive EOF in
    Lib/SimpleXMLRPCServer.py
  - CVE-2012-0845
* SECURITY UPDATE: fix hash randomization DoS
  - debian/patches/CVE-2012-1150.diff: add -R command-line option and
    PYTHONHASHSEED environment variable, to provide an opt-in way to protect
    against denial of service attacks due to hash collisions within the dict
    and set types.
  - CVE-2012-1150
* SECURITY UPDATE: http://bugs.python.org/issue14579
  - debian/patches/CVE-2012-2135.diff: fix vulnerability in the utf-16
    decoder after error handling
  - CVE-2012-2135

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: