Overview
python: update to 2.7.6

Python was updated to 2.7.6 to fix bugs and security issues:

* bugfix-only release
* SSL-related fixes
* upstream fix for CVE-2013-4238
* upstream fixes for CVE-2013-1752

- added patches for CVE-2013-1752 (bnc#856836) issues that are
missing in 2.7.6:
python-2.7.6-imaplib.patch
python-2.7.6-poplib.patch
smtplib_maxline-2.7.patch
- CVE-2013-1753 (bnc#856835) gzip decompression bomb in xmlrpc client:
xmlrpc_gzip_27.patch
- python-2.7.6-bdist-rpm.patch: fix broken "setup.py bdist_rpm" command
(bnc#857470, issue18045)
- multilib patch: add "~/.local/lib64" paths to search path
(bnc#637176)
- CVE-2014-1912-recvfrom_into.patch: fix potential buffer overflow
in socket.recvfrom_into (CVE-2014-1912, bnc#863741)
- Add Obsoletes/Provides for python-ctypes.

- reintroduce audioop.so as the problems with it seem to be fixed
(bnc#831442)

Fixed bugs
bnc#863741
VUL-0: CVE-2014-1912: python: buffer overflow in socket.recvfrom_into
bnc#831442
openSUSE:12.3/python-base: Bug
bnc#637176
Python doesn't have the PEP 370 compatible lib64 path
bnc#856835
VUL-1: CVE-2013-1753: python: gzip decompression bomb
bnc#856836
VUL-1: CVE-2013-1752: python: various stdlib read flaws
bnc#857470
python: bdist_rpm broken
CVE-CVE-2013-1752
CVE-CVE-2013-1753
CVE-CVE-2013-4238
CVE-CVE-2014-1912
Selected Binaries
openSUSE Build Service is sponsored by
Places