Format: 1.8
Date: Wed, 10 Jul 2019 07:58:48 -0400
Source: python3.5
Binary: python3.5 python3.5-venv libpython3.5-stdlib python3.5-minimal libpython3.5-minimal libpython3.5 python3.5-examples python3.5-dev libpython3.5-dev libpython3.5-testsuite idle-python3.5 python3.5-doc python3.5-dbg libpython3.5-dbg
Architecture: all amd64
Version: 3.5.2-2ubuntu0~16.04.8
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-031.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 idle-python3.5 - IDE for Python (v3.5) using Tkinter
 libpython3.5 - Shared Python runtime library (version 3.5)
 libpython3.5-dbg - Debug Build of the Python Interpreter (version 3.5)
 libpython3.5-dev - Header files and a static library for Python (v3.5)
 libpython3.5-minimal - Minimal subset of the Python language (version 3.5)
 libpython3.5-stdlib - Interactive high-level object-oriented language (standard library
 libpython3.5-testsuite - Testsuite for the Python standard library (v3.5)
 python3.5  - Interactive high-level object-oriented language (version 3.5)
 python3.5-dbg - Debug Build of the Python Interpreter (version 3.5)
 python3.5-dev - Header files and a static library for Python (v3.5)
 python3.5-doc - Documentation for the high-level object-oriented language Python
 python3.5-examples - Examples for the Python language (v3.5)
 python3.5-minimal - Minimal subset of the Python language (version 3.5)
 python3.5-venv - Interactive high-level object-oriented language (pyvenv binary, v
Launchpad-Bugs-Fixed: 1835135
Changes:
 python3.5 (3.5.2-2ubuntu0~16.04.8) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: incorrect cookie domain check
     - debian/patches/CVE-2018-20852.patch: prefix dot in domain for proper
       subdomain validation in Lib/http/cookiejar.py,
       Lib/test/test_http_cookiejar.py.
     - CVE-2018-20852
   * SECURITY UPDATE: integer overflow in pickle
     - debian/patches/CVE-2018-20406.patch: avoid relying on signed overflow
       in _pickle memos in Modules/_pickle.c.
     - CVE-2018-20406
   * SECURITY UPDATE: NULL pointer dereference via X509 certificate
     - debian/patches/CVE-2019-5010.patch: fix segfault in ssl cert parser
       in Lib/test/talos-2019-0758.pem, Lib/test/test_ssl.py,
       Modules/_ssl.c.
     - CVE-2019-5010
   * SECURITY UPDATE: improper handling of unicode encoding
     - debian/patches/CVE-2019-9636.patch: add check for characters in
       netloc that normalize to separators in Doc/library/urllib.parse.rst,
       Lib/test/test_urlparse.py, Lib/urllib/parse.py.
     - CVE-2019-9636
   * SECURITY UPDATE: HTTP header injection
     - debian/patches/CVE-2019-9740.patch: disallow control chars in http
       URLs in Lib/http/client.py, Lib/test/test_urllib.py,
       Lib/test/test_xmlrpc.py.
     - CVE-2019-9740
     - CVE-2019-9947
   * SECURITY UPDATE: urllib support the local_file: scheme
     - debian/patches/CVE-2019-9948.patch: disallow file reading in
       Lib/urllib/request.py, Lib/test/test_urllib.py.
     - CVE-2019-9948
   * SECURITY UPDATE: incomplete fix for CVE-2019-9636
     - debian/patches/CVE-2019-10160-1.patch: fix handling of
       pre-normalization characters in urlsplit() in
       Lib/test/test_urlparse.py, Lib/urllib/parse.py.
     - debian/patches/CVE-2019-10160-2.patch: correct fix to handle
       decomposition in usernames in Lib/test/test_urlparse.py,
       Lib/urllib/parse.py.
     - CVE-2019-10160
   * debian/patches/issue9146.diff: fix FIPS mode environments where MD5
     isn't available in Modules/_hashopenssl.c. (LP: #1835135)
Checksums-Sha1:
 8c0ec65bc28a4ff92989cb664d2ae60872220323 39338 idle-python3.5_3.5.2-2ubuntu0~16.04.8_all.deb
 b969cbc908f1a5edfabcd9ce4df8f1a9cd89cf92 8632810 libpython3.5-dbg_3.5.2-2ubuntu0~16.04.8_amd64.deb
 afc713596e3740bec1dab5c746396e275a2cecd0 984 libpython3.5-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 54cc3473c5911da6676b4b8b58fa1c6dc90ba2e7 976 libpython3.5-dev-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 8d9326111d2d5fed4d755e6cada9239026ba4440 37324514 libpython3.5-dev_3.5.2-2ubuntu0~16.04.8_amd64.deb
 f7a568b50ea12d8eb3d3cd71ba5ae3544485a677 864 libpython3.5-minimal-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 7d93337d24ea6adde555eadfd8cd60635910c760 525342 libpython3.5-minimal_3.5.2-2ubuntu0~16.04.8_amd64.deb
 1308773c6eb2a070a8b99ac718fb9097e71adb6c 988 libpython3.5-stdlib-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 1b4476843156484515eae14accad65de8bbfd14c 2136970 libpython3.5-stdlib_3.5.2-2ubuntu0~16.04.8_amd64.deb
 89b9771b3ea4bf36a2a0c38ac435d8363a588df8 2548336 libpython3.5-testsuite_3.5.2-2ubuntu0~16.04.8_all.deb
 eaabf6c0f412747e262f9e51b7e639acd43bce63 1360354 libpython3.5_3.5.2-2ubuntu0~16.04.8_amd64.deb
 18885c3a0b2840d3a4ab4473cabbbf38c538c3d1 10534750 python3.5-dbg_3.5.2-2ubuntu0~16.04.8_amd64.deb
 68cd2ede10099ff0a0bfa1ed2c6612b8bbcdadfc 413266 python3.5-dev_3.5.2-2ubuntu0~16.04.8_amd64.deb
 6c76dbdf1f3c48e11daf0048dd645a3150317354 5079292 python3.5-doc_3.5.2-2ubuntu0~16.04.8_all.deb
 6814c4846d6605191bca16020ef2fb15356be888 441368 python3.5-examples_3.5.2-2ubuntu0~16.04.8_all.deb
 94b51f34aaba6dcf277835e62758d7deecd64588 1597818 python3.5-minimal_3.5.2-2ubuntu0~16.04.8_amd64.deb
 326ba0b298f6f9503c696ac9739e63eccd990850 6014 python3.5-venv_3.5.2-2ubuntu0~16.04.8_amd64.deb
 dc463e0153d9e68384d47d39ee9a7c14fcde97f6 165128 python3.5_3.5.2-2ubuntu0~16.04.8_amd64.deb
Checksums-Sha256:
 ee22456147cd944f26d7689621d917a3ded9888d47f55818fb1dee043ec3c63f 39338 idle-python3.5_3.5.2-2ubuntu0~16.04.8_all.deb
 412ecd793eb9d404a43127136e31c7706072d1cb58acaa3c05e1965b33d7165a 8632810 libpython3.5-dbg_3.5.2-2ubuntu0~16.04.8_amd64.deb
 1f1184e627ed34f52c8b0721f527f59ea0c2984036b4f46348244bc1769150ce 984 libpython3.5-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 816529e01e8740443cdba349932b096df423b967685a8ef01449511fac483e66 976 libpython3.5-dev-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 3700ff47508a9b8c295784141d6a811e70a1aa29ed56443e2b65e855df62a5bf 37324514 libpython3.5-dev_3.5.2-2ubuntu0~16.04.8_amd64.deb
 07258452bc8f7d8aea36cddb179cc4abed1700dd3afbd41df6803db253cfdf4e 864 libpython3.5-minimal-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 09bec401249ad3c9d91e10f46f87be7792ac23fa6fd747d5f7767af2d824bdf4 525342 libpython3.5-minimal_3.5.2-2ubuntu0~16.04.8_amd64.deb
 29ee9913f5d101bd615d7c3296aeda51f6570f42dd01b74cad180c2889d1da71 988 libpython3.5-stdlib-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 77d2a074d98cedad8c9fca7ccb4f42e3888f06877dab046ccb6e439328d2ea2a 2136970 libpython3.5-stdlib_3.5.2-2ubuntu0~16.04.8_amd64.deb
 63f1a27e7219b0137eb2ecb699eedceb062a754c93b2f0f5cca8ed9a632a1eb0 2548336 libpython3.5-testsuite_3.5.2-2ubuntu0~16.04.8_all.deb
 258ac573a044e522c5859a38e8e84973fa7ae490a4ab8249fee5f641e7b4c16f 1360354 libpython3.5_3.5.2-2ubuntu0~16.04.8_amd64.deb
 0c4e65894dd6dd36287360949d4d94b578eaf7f250e4435986bd2aa86c6f6dbf 10534750 python3.5-dbg_3.5.2-2ubuntu0~16.04.8_amd64.deb
 be42a77a743da1387e70c5fabca51310b662210d9263378e268a97e50d4e18f6 413266 python3.5-dev_3.5.2-2ubuntu0~16.04.8_amd64.deb
 14ae54df3c304831d145793bb7534bbe423b9dad74c5740af8d9e2d44e9b3ee2 5079292 python3.5-doc_3.5.2-2ubuntu0~16.04.8_all.deb
 ae9c4fb542b233a599b9ef522b500066849dde8e1c8af4faca8a921f49ff4df9 441368 python3.5-examples_3.5.2-2ubuntu0~16.04.8_all.deb
 3e3d29884c24d1bd98fb8ad0f4d10c72c077ef1e9cd61e0347eed44edd7a5a42 1597818 python3.5-minimal_3.5.2-2ubuntu0~16.04.8_amd64.deb
 4e20b9ab97f1f987703aab453e8aa9bf29f3d88877b02fe8daf1a9e28d16b9bf 6014 python3.5-venv_3.5.2-2ubuntu0~16.04.8_amd64.deb
 f542739a2ee92e2a5e2ad121734af4a6f0aadfaea546435d7ece317e71827b4c 165128 python3.5_3.5.2-2ubuntu0~16.04.8_amd64.deb
Files:
 b6d8aee7d3c855a13150a9dc11dea034 39338 python optional idle-python3.5_3.5.2-2ubuntu0~16.04.8_all.deb
 bd2ef44c5d9ccb861c65e8caa5642228 8632810 debug extra libpython3.5-dbg_3.5.2-2ubuntu0~16.04.8_amd64.deb
 ae784079043a58806495805e5a1a93d1 984 libs extra libpython3.5-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 d416cd43cea8ab6963856ba14fb8e337 976 libdevel extra libpython3.5-dev-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 eddf2614559a2389f7d21f0a6ab1f7ad 37324514 libdevel optional libpython3.5-dev_3.5.2-2ubuntu0~16.04.8_amd64.deb
 73b8881a16735bb1ade7d52850ef3bd4 864 python extra libpython3.5-minimal-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 9157e67af7371d4e507778cd2bb90137 525342 python optional libpython3.5-minimal_3.5.2-2ubuntu0~16.04.8_amd64.deb
 67ba2df1ee5960944e7b6af1765b145a 988 python extra libpython3.5-stdlib-dbgsym_3.5.2-2ubuntu0~16.04.8_amd64.ddeb
 1079936ac7842d32e6d2e5bfa442c80a 2136970 python optional libpython3.5-stdlib_3.5.2-2ubuntu0~16.04.8_amd64.deb
 66bb5d8ccdf890fa64ac64d933fa2837 2548336 libdevel optional libpython3.5-testsuite_3.5.2-2ubuntu0~16.04.8_all.deb
 d2bf1e833a188d19731d19ca35b8f394 1360354 libs optional libpython3.5_3.5.2-2ubuntu0~16.04.8_amd64.deb
 1646036292b3b85407e86414f93962ea 10534750 debug extra python3.5-dbg_3.5.2-2ubuntu0~16.04.8_amd64.deb
 4961a20ba3c7f36879364803d5bcdbf0 413266 python optional python3.5-dev_3.5.2-2ubuntu0~16.04.8_amd64.deb
 9d069aec09dc1cf3dc48e7f441609a4c 5079292 doc optional python3.5-doc_3.5.2-2ubuntu0~16.04.8_all.deb
 b00a29a37edd2f31e9abcfacb6c32203 441368 python optional python3.5-examples_3.5.2-2ubuntu0~16.04.8_all.deb
 8a15b8bdc97a1a2e530bd3a36241c21a 1597818 python optional python3.5-minimal_3.5.2-2ubuntu0~16.04.8_amd64.deb
 4214e1ac2d1a75427f48175c9ce34776 6014 python optional python3.5-venv_3.5.2-2ubuntu0~16.04.8_amd64.deb
 53a15fe3639aa13f176a2d670e63b605 165128 python optional python3.5_3.5.2-2ubuntu0~16.04.8_amd64.deb
Original-Maintainer: Matthias Klose <doko@debian.org>