snailed
/
void-packages
2
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Activity

python: update to 2.7.16.

This commit is contained in:
maxice8 2019-03-06 20:22:48 -03:00 committed by maxice8
parent 0208393717
commit 2bde38f266
2 changed files with 5 additions and 38 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
srcpkgs/python/patches/CVE-2019-5010.patch
View File

@ -1,33 +0,0 @@
commit 06b15424b0dcacb1c551b2a36e739fffa8d0c595
Author: Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Date: Tue Jan 15 15:11:52 2019 -0800
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.
Signed-off-by: Christian Heimes <christian@python.org>
https://bugs.python.org/issue35746
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
Co-authored-by: Christian Heimes <christian@python.org>
diff --git Modules/_ssl.c Modules/_ssl.c
index a96c419260..19bb1207b4 100644
--- Modules/_ssl.c
+++ Modules/_ssl.c
@@ -1223,6 +1223,10 @@ _get_crl_dp(X509 *certificate) {
STACK_OF(GENERAL_NAME) *gns;
dp = sk_DIST_POINT_value(dps, i);
+ if (dp->distpoint == NULL) {
+ /* Ignore empty DP value, CVE-2019-5010 */
+ continue;
+ }
gns = dp->distpoint->name.fullname;
for (j=0; j < sk_GENERAL_NAME_num(gns); j++) {

10
srcpkgs/python/template
View File

@ -3,20 +3,20 @@
# THIS PKG MUST BE SYNCHRONIZED WITH "srcpkgs/python-tkinter". # THIS PKG MUST BE SYNCHRONIZED WITH "srcpkgs/python-tkinter".
# #
pkgname=python pkgname=python
version=2.7.15 version=2.7.16
revision=5 revision=1
wrksrc="Python-${version}" wrksrc="Python-${version}"
pycompile_dirs="usr/lib/python2.7"
hostmakedepends="pkg-config" hostmakedepends="pkg-config"
makedepends="libffi-devel readline-devel gdbm-devel libressl-devel expat-devel makedepends="libffi-devel readline-devel gdbm-devel libressl-devel expat-devel
sqlite-devel bzip2-devel zlib-devel" sqlite-devel bzip2-devel zlib-devel"
depends="ca-certificates" depends="ca-certificates"
pycompile_dirs="usr/lib/python2.7"
short_desc="Interpreted, interactive, object-oriented programming language" short_desc="Interpreted, interactive, object-oriented programming language"
maintainer="Juan RP <xtraeme@voidlinux.org>" maintainer="Juan RP <xtraeme@voidlinux.org>"
homepage="https://www.python.org"
license="Python-2.0" license="Python-2.0"
homepage="https://www.python.org"
distfiles="https://www.python.org/ftp/python/${version}/Python-${version}.tar.xz" distfiles="https://www.python.org/ftp/python/${version}/Python-${version}.tar.xz"
checksum=22d9b1ac5b26135ad2b8c2901a9413537e08749a753356ee913c84dbd2df5574 checksum=f222ef602647eecb6853681156d32de4450a2c39f4de93bd5b20235f2e660ed7
alternatives=" alternatives="
python:idle:/usr/bin/idle2.7 python:idle:/usr/bin/idle2.7