-
python3.7 (3.7.5-2~19.10ubuntu1) eoan-security; urgency=medium
* SECURITY UPDATE: CRLF injection
- debian/patches/CVE-2019-18348.patch: disallow control characters
in hostnames in http.client in Lib/http/client.py, Lib/test/test_*.py.
- CVE-2019-18348
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2020-8492.patch: fix the regex to prevent
the regex denial of service in Lib/urllib/request.py,
- CVE-2020-8492
-- <email address hidden> (Leonidas S. Barbosa) Sun, 19 Apr 2020 17:18:17 -0300
-
python3.7 (3.7.5-2~19.10) eoan-proposed; urgency=medium
* SRU: LP: #1835738, backport 3.7.5 to 19.10.
-- Matthias Klose <email address hidden> Wed, 20 Nov 2019 10:21:52 +0100
-
python3.7 (3.7.5-1ubuntu1) eoan; urgency=medium
* SRU: LP: #1835738, to build the final 3.7.5 release for eoan,
just introducing a delta for the SRU process.
python3.7 (3.7.5-1) unstable; urgency=medium
* Python 3.7.5 release.
-- Matthias Klose <email address hidden> Tue, 15 Oct 2019 18:15:10 +0200
-
python3.7 (3.7.5~rc1-2) unstable; urgency=medium
* Apply proposed patch for issue 38368. LP: #1847036. Closes: #941650.
-- Matthias Klose <email address hidden> Tue, 08 Oct 2019 18:47:45 +0200
-
python3.7 (3.7.5~rc1-1) unstable; urgency=medium
* Python 3.7.5 release candidate 1.
* Bump standards version.
-- Matthias Klose <email address hidden> Wed, 02 Oct 2019 06:19:31 +0200
-
python3.7 (3.7.4-4) unstable; urgency=medium
* Update to 20190904 from the 3.7 branch.
-- Matthias Klose <email address hidden> Wed, 04 Sep 2019 10:03:05 +0200
-
python3.7 (3.7.4-3) unstable; urgency=medium
* Enable pgo/lto builds on arm64. Closes: #934812.
* Don't propagate lto flags to the _sysconfigdata module. Closes: #934771.
* d/patches/issue35998.diff: Disable TLS1.3 in the client on all platforms
rather than just reducing the payload size (Michael Hudson-Doyle).
* Annote build dependencies used for tests. Closes: #928513.
-- Matthias Klose <email address hidden> Wed, 21 Aug 2019 18:01:23 +0200
-
python3.7 (3.7.4-2ubuntu1) eoan; urgency=medium
* d/patches/issue35998.diff: Disable TLS1.3 in the client on all platforms
rather than just reducing the payload size.
-- Michael Hudson-Doyle <email address hidden> Mon, 29 Jul 2019 15:51:40 +1200
-
python3.7 (3.7.4-2) unstable; urgency=medium
* Bump the platform name for KFreeBSD.
-- Matthias Klose <email address hidden> Thu, 11 Jul 2019 12:43:21 +0200
-
python3.7 (3.7.4-1) unstable; urgency=medium
* Python 3.7.4 release.
-- Matthias Klose <email address hidden> Tue, 09 Jul 2019 07:48:37 +0200
-
python3.7 (3.7.4~rc2-1) experimental; urgency=medium
* Python 3.7.4 release candidate 2.
-- Matthias Klose <email address hidden> Wed, 03 Jul 2019 09:09:05 +0200
-
python3.7 (3.7.4~rc1-1) experimental; urgency=medium
* Python 3.7.4 release candidate 1.
-- Matthias Klose <email address hidden> Wed, 19 Jun 2019 19:04:25 +0200
-
python3.7 (3.7.3-2) unstable; urgency=medium
* d/p/arm-alignment.diff: Don't allow unaligned memory accesses in the
_sha3 extension (Dave Jones). LP: #1821869. Issue #36515.
* Tweak the asyncio/ssl test again.
-- Matthias Klose <email address hidden> Wed, 03 Apr 2019 07:39:12 +0200