Format: 1.8 Date: Fri, 28 Sep 2012 07:07:08 -0500 Source: python2.6 Binary: python2.6 python2.6-minimal libpython2.6 python2.6-examples python2.6-dev idle-python2.6 python2.6-doc python2.6-dbg Architecture: powerpc Version: 2.6.6-6ubuntu7.1 Distribution: natty Urgency: low Maintainer: Ubuntu/powerpc Build Daemon Changed-By: Jamie Strandboge Description: idle-python2.6 - An IDE for Python (v2.6) using Tkinter libpython2.6 - Shared Python runtime library (version 2.6) python2.6 - An interactive high-level object-oriented language (version 2.6) python2.6-dbg - Debug Build of the Python Interpreter (version 2.6) python2.6-dev - Header files and a static library for Python (v2.6) python2.6-doc - Documentation for the high-level object-oriented language Python python2.6-examples - Examples for the Python language (v2.6) python2.6-minimal - A minimal subset of the Python language (version 2.6) Changes: python2.6 (2.6.6-6ubuntu7.1) natty-security; urgency=low . * SECURITY UPDATE: fix hash randomization DoS - debian/patches/CVE-2012-1150.diff: add -R command-line option and PYTHONHASHSEED environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. - CVE-2012-1150 * SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon malformed POST request - debian/patches/CVE-2012-0845.diff: break if don't receive EOF in Lib/SimpleXMLRPCServer.py - CVE-2012-0845 * SECURE UPDATE: http://bugs.python.org/issue13512 - debian/patches/CVE-2011-4944.diff: create ~/.pypirc securely - CVE-2011-4944 * SECURITY UPDATE: Fix CGIHTTPServer information disclosure. - debian/patches/CVE-2011-1015.diff: Relative paths are now collapsed within the url properly before looking in cgi_directories. - CVE-2011-1015 * SECURITY UPDATE: fix XSS in SimpleHTTPServer - debian/patches/CVE-2011-4940.diff: add a charset parameter to the Content-type - CVE-2011-4940 * SECURITY UPDATE: update urllib and urllib2 for invalid redirections - debian/patches/CVE-2011-1521.diff: only process Location headers for http, https, and ftp - http://bugs.python.org/issue11662 - CVE-2011-1521 Checksums-Sha1: b7683810673a28a7f4e4cc5c8a46e73412f8f304 2402426 python2.6_2.6.6-6ubuntu7.1_powerpc.deb 8a5ec58c0d457f5f49b6f5f65beda1b205b613c2 1457626 python2.6-minimal_2.6.6-6ubuntu7.1_powerpc.deb 2e579ccd74355f5978d0be50b499ef121c88f706 1066608 libpython2.6_2.6.6-6ubuntu7.1_powerpc.deb f1b512d0d7c16fb784b64c2d0e701d9c6c1d61b4 4902624 python2.6-dev_2.6.6-6ubuntu7.1_powerpc.deb bb5502b60b4d112b45d3de97ffe2758b992286bc 13244188 python2.6-dbg_2.6.6-6ubuntu7.1_powerpc.deb Checksums-Sha256: 1828bb487cdca614ac82c4abfe6c062497f4f5d6303fb460ff1375926e60dcca 2402426 python2.6_2.6.6-6ubuntu7.1_powerpc.deb d8fab6dff4953a424429add01b183bdb7ff5f79cf7fed3be8c2d8d868c9a0d2d 1457626 python2.6-minimal_2.6.6-6ubuntu7.1_powerpc.deb 29447dd0e274c2c8c9ebb33afc8dd087069740e847dc014d695ef3afcb92be5f 1066608 libpython2.6_2.6.6-6ubuntu7.1_powerpc.deb 27700c2851bf1d14d84e79150196624381455e65e884834747ef0fdb1a5559ab 4902624 python2.6-dev_2.6.6-6ubuntu7.1_powerpc.deb 87f3047ad3a23eb0aa597c83c080c3b342e70d4285e8719e2fed1a7f8bacba15 13244188 python2.6-dbg_2.6.6-6ubuntu7.1_powerpc.deb Files: d73ca0269d9356527b2ec6eb6af10b9a 2402426 python optional python2.6_2.6.6-6ubuntu7.1_powerpc.deb a4fb680a2a89d3a82e150c2609ef95bb 1457626 python optional python2.6-minimal_2.6.6-6ubuntu7.1_powerpc.deb 6061eea05e825cd14657e01446daf4b4 1066608 libs optional libpython2.6_2.6.6-6ubuntu7.1_powerpc.deb 14607296be88ed958acb9ecef9170a3e 4902624 python optional python2.6-dev_2.6.6-6ubuntu7.1_powerpc.deb b030986d5d0ac66126a97d0c7b95736c 13244188 debug extra python2.6-dbg_2.6.6-6ubuntu7.1_powerpc.deb Original-Maintainer: Matthias Klose