Request 1109203: Submit python39 - openSUSE Build Service

Overview

Request 1109203 accepted

- Update to 3.9.18 (bsc#1214692):
- gh-108310: Fixed an issue where instances of ssl.SSLSocket were
vulnerable to a bypass of the TLS handshake and included
protections (like certificate verification) and treating sent
unencrypted data as if it were post-handshake TLS encrypted data.
Security issue reported as CVE-2023-40217 by Aapo Oksman. Patch by
Gregory P. Smith.
- gh-107845: tarfile.data_filter() now takes the location of
symlinks into account when determining their target, so it will no
longer reject some valid tarballs with
LinkOutsideDestinationError.
- gh-107565: Update multissltests and GitHub CI workflows to use
OpenSSL 1.1.1v, 3.0.10, and 3.1.2.

Created by dgarcia 9 months ago
In state accepted

Submit python39

Comments for request 1109203 0

Login required, please login in order to comment

Request History

dgarcia created request 9 months ago

- Update to 3.9.18 (bsc#1214692):
- gh-108310: Fixed an issue where instances of ssl.SSLSocket were
vulnerable to a bypass of the TLS handshake and included
protections (like certificate verification) and treating sent
unencrypted data as if it were post-handshake TLS encrypted data.
Security issue reported as CVE-2023-40217 by Aapo Oksman. Patch by
Gregory P. Smith.
- gh-107845: tarfile.data_filter() now takes the location of
symlinks into account when determining their target, so it will no
longer reject some valid tarballs with
LinkOutsideDestinationError.
- gh-107565: Update multissltests and GitHub CI workflows to use
OpenSSL 1.1.1v, 3.0.10, and 3.1.2.

factory-auto added opensuse-review-team as a reviewer 9 months ago

Please review sources

factory-auto accepted review 9 months ago

Check script succeeded

licensedigger accepted review 9 months ago

ok

anag+factory set openSUSE:Factory:Staging:I as a staging project 9 months ago

Being evaluated by staging project "openSUSE:Factory:Staging:I"

anag+factory accepted review 9 months ago

Picked "openSUSE:Factory:Staging:I"

darix accepted review 9 months ago

Accepted review for by_group opensuse-review-team request 1109203 from user anag+factory

anag+factory added factory-staging as a reviewer 9 months ago

Being evaluated by group "factory-staging"

anag+factory accepted review 9 months ago

Unstaged from project "openSUSE:Factory:Staging:I"

anag+factory set openSUSE:Factory:Staging:G as a staging project 9 months ago

Being evaluated by staging project "openSUSE:Factory:Staging:G"

anag+factory accepted review 9 months ago

Picked "openSUSE:Factory:Staging:G"

anag+factory accepted review 8 months ago

Staging Project openSUSE:Factory:Staging:G got accepted.

anag+factory approved review 8 months ago

Staging Project openSUSE:Factory:Staging:G got accepted.

anag+factory accepted request 8 months ago

Staging Project openSUSE:Factory:Staging:G got accepted.

openSUSE Build Service is sponsored by