-
python2.5 (2.5.4-1ubuntu4.1) jaunty-security; urgency=low
* SECURITY UPDATE: fix DoS via malformed XML
- debian/patches/CVE-2009-3720.dpatch: update Modules/expat/xmltok_impl.c
to not access beyond end of input string
- CVE-2009-3720
* SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
- debian/patches/CVE-2009-3560.dpatch: update Modules/expat/xmlparse.c to
properly recognize the end of a token
- CVE-2009-3560
-- Jamie Strandboge <email address hidden> Wed, 20 Jan 2010 08:21:05 -0600
-
python2.5 (2.5.4-1ubuntu4) jaunty; urgency=low
* Fix issue #1651995, _convert_ref for non-ASCII characters. LP: #240929.
* Fix issue #3845, in PyRun_SimpleFileExFlags avoid invalid memory access
with short file names. LP: #234798.
* Fix issue #1046, title endtag in HTMLCalender.formatyearpage().
Closes: #513335.
* Py_DECREF: Add `do { ... } while (0)' to avoid compiler warnings.
* curses.initscr(): raise an error instead of calling exit() in error cases.
Closes: #478817.
* Fix comment macro in python manpage.
-- Matthias Klose <email address hidden> Sat, 04 Apr 2009 19:09:56 +0200
-
python2.5 (2.5.4-1ubuntu3) jaunty; urgency=low
* Apply from the 2.5 release branch:
- Issue #5389: Avoid potential for undefined variable 'startinpos' in
PyUnicode_DecodeUTF7().
* Re-add the locales build-dependency on sparc.
* Backport fix for issue 4150 from the trunk. LP: #324708.
* Use the information in /etc/lsb-release for platform.dist(). LP: #196526.
-- Matthias Klose <email address hidden> Wed, 18 Mar 2009 16:52:47 +0100
-
python2.5 (2.5.4-1ubuntu2) jaunty; urgency=low
* Don't build-depend on locales on sparc (currently not installable), only
needed by the testsuite.
-- Matthias Klose <email address hidden> Thu, 19 Feb 2009 12:58:47 +0100
-
python2.5 (2.5.4-1ubuntu1) jaunty; urgency=low
* Merge with Debian; remaining changes:
- Include the pregenerated documentation.
- Set priority of python2.5-minimal to required.
- Build python2.5-doc from the pregenerated documentation.
* Build-depend on libtk8.5-dev and libdb4.6-dev.
-- Matthias Klose <email address hidden> Thu, 19 Feb 2009 09:23:27 +0100
-
python2.5 (2.5.4-0ubuntu1) jaunty; urgency=low
* New upstream version.
* ctypes.util.find_library(): Determine the shared object name of a library
using ldconfig only, only fall back to objdump/gcc if ldconfig fails.
Raise exceptions if gcc or objdump cannot be found. Closes: #453287,
LP: #211962.
Packages needing binutils and/or gcc must explicitely depend on it.
-- Matthias Klose <email address hidden> Sun, 04 Jan 2009 22:31:15 +0100
-
python2.5 (2.5.3-0ubuntu1) jaunty; urgency=low
* New upstream version.
* Regenerate the included documentation.
* Add an option --install-layout=deb, which is ignored for 2.5.
-- Matthias Klose <email address hidden> Sun, 21 Dec 2008 08:57:49 +0100
-
python2.5 (2.5.2-14ubuntu1) jaunty; urgency=low
* Update to 20081122, taken from the 2.5 release branch.
* Merge with Debian; remaining changes:
- Include the pregenerated documentation.
- Set priority of python2.5-minimal to required.
- Build python2.5-doc from the pregenerated documentation.
python2.5 (2.5.2-14) unstable; urgency=low
* Don't run tests on the buildds which require downloads during the build.
-- Matthias Klose <email address hidden> Sun, 23 Nov 2008 12:12:08 +0100
-
python2.5 (2.5.2-13ubuntu2) jaunty; urgency=low
* No changed source rebuild for armel, which pulled in bad
dependencies due to building again Debian sid binaries (LP: #300211)
-- Michael Casadevall <email address hidden> Thu, 20 Nov 2008 02:00:32 -0500
-
python2.5 (2.5.2-13ubuntu1) jaunty; urgency=low
* Update to 20081004, taken from the 2.5 release branch.
* Merge with Debian; remaining changes:
- Include the pregenerated documentation.
- Set priority of python2.5-minimal to required.
- Build python2.5-doc from the pregenerated documentation.
python2.5 (2.5.2-13) unstable; urgency=low
* Undo the reversion in the last upload.
* Fix detection of system libffi library, which is correctly built (instead
of the one included in the python source). Closes: #505318.
python2.5 (2.5.2-12) unstable; urgency=low
* Fix CVE-2008-4864, imageop did not validate arguments correctly
and could segfault as a result. Closes: #504619.
* Fix build failures of the _ctypes module on arm, armel, m68k, reverting
the change to fix upstream issue #2682.
-- Matthias Klose <email address hidden> Fri, 14 Nov 2008 13:32:14 +0100
-
python2.5 (2.5.2-11.1ubuntu1) intrepid; urgency=low
* Update to 20081004, taken from the 2.5 release branch.
- debian/patches/CVE-2008-2316: Remove, applied upstream.
- debian/patches/CVE-2008-1679: Remove, applied upstream.
* idle: Add version information to menu entry. LP: #209507.
python2.5 (2.5.2-11.1) unstable; urgency=medium
* Non-maintainer upload.
* Expand copyright notice to cover licenses of linked against libraries.
Closes: #498477.
* Introduce new platform definitions for alpha, hppa, mips, mipsel, sparc.
Closes: #499132.
-- Matthias Klose <email address hidden> Sun, 05 Oct 2008 09:36:15 +0200