-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 02 May 2024 07:59:08 -0400 Source: python3.11 Binary: idle-python3.11 libpython3.11-testsuite python3.11-doc python3.11-examples Architecture: all Version: 3.11.2-6+deb12u2 Distribution: bookworm Urgency: medium Maintainer: all Build Daemon (x86-csail-02) Changed-By: Stefano Rivera Description: idle-python3.11 - IDE for Python (v3.11) using Tkinter libpython3.11-testsuite - Testsuite for the Python standard library (v3.11) python3.11-doc - Documentation for the high-level object-oriented language Python python3.11-examples - Examples for the Python language (v3.11) Closes: 1070133 1070135 Changes: python3.11 (3.11.2-6+deb12u2) bookworm; urgency=medium . [ Steve McIntyre ] * Apply upstream security fix for CVE-2024-0450 Protect zipfile from "quoted-overlap" zipbomb. Closes: #1070133 * Apply and tweak upstream security fix for CVE-2023-6597 tempfile.TemporaryDirectory: fix symlink bug in cleanup Closes: #1070135 . [ Stefano Rivera ] * Apply upstream patch to avoid a potential null pointer dereference in fileutils. * Apply upstream security fix for CVE-2023-41105 os.path.normpath(): Path truncation at null bytes. * Apply upstream security fix for CVE-2023-40217 Avoid bypass TLS of handshake protections on closed sockets. * Apply upstream security fix for CVE-2023-24329 Strip C0 control and space characters in urlsplit. Checksums-Sha1: 873397aae54a05e8ef1f78d43ec29dd63d3eca0b 356996 idle-python3.11_3.11.2-6+deb12u2_all.deb 5a5f79242de09a5cdcc9471fb0b30754ad158608 3361616 libpython3.11-testsuite_3.11.2-6+deb12u2_all.deb a2924de2411bb8558a1eb3fc508692ca7502ca94 12639408 python3.11-doc_3.11.2-6+deb12u2_all.deb 302d954cd2df03496497b9e6a8619cdb9102c8b7 797324 python3.11-examples_3.11.2-6+deb12u2_all.deb 1a9b3d4e9aada6a1ebad5857ad9415da8444ecc6 12279 python3.11_3.11.2-6+deb12u2_all-buildd.buildinfo Checksums-Sha256: 3f117da7644d1aca83a0dd43300c68f9f981894a521a8df71cd6e01a7f9bcc14 356996 idle-python3.11_3.11.2-6+deb12u2_all.deb d7abdbffff4e65cd77b82975cf5f265a1392f9ad47236a76021e3b9bad257517 3361616 libpython3.11-testsuite_3.11.2-6+deb12u2_all.deb 3ff8f63259444641bef9aa626b07f0e548b7fef0d7f06cdd437e8cce93b0e0a2 12639408 python3.11-doc_3.11.2-6+deb12u2_all.deb 3f780cbb44b1289da6f86bb8294f95f80b742d872749c076c3823061797f491b 797324 python3.11-examples_3.11.2-6+deb12u2_all.deb 0265cdda77d2c0c1e729dfc017a6296aacf98a9d67a55709929958bb5203a31a 12279 python3.11_3.11.2-6+deb12u2_all-buildd.buildinfo Files: 0015b555d44442a4abe1546a5261aecf 356996 python optional idle-python3.11_3.11.2-6+deb12u2_all.deb 8d918eb49695d232e573b47456ec6e74 3361616 libdevel optional libpython3.11-testsuite_3.11.2-6+deb12u2_all.deb 7efbcf560cc16eb9e10b8003c7b7d80e 12639408 doc optional python3.11-doc_3.11.2-6+deb12u2_all.deb 19b3a7536a30157e57e343a00bef78ed 797324 python optional python3.11-examples_3.11.2-6+deb12u2_all.deb 90fc111608eba7069bc33df3d091c51d 12279 python optional python3.11_3.11.2-6+deb12u2_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEzcbx6nIE/ydHa1FFigL77i1GSVkFAmZL6m8ACgkQigL77i1G SVnFWhAAhWzoeSCd8TcGjnPcMsnVBF2g2iW1RrmVaNPF6zQHN1+26fsTgsuACoSy FgN0hhDKjCFKucSRlghPfHoiCtnNibzLRrChXVnuCcJpvWXSrF8B5+iELiAej1oP BNABldLGLjLYQ6KzSXs9IWw/rOl088gisu2te++02LxJbYfy0taoS4CKc2PBWrqA 338TDWwTeYOJAtFDuC3X9kLRtSMcM7eprzXKSZuk3DmnRnft08MlCCjI9I8Rmdga n5oImjNdPRe0T1i+TzlJCKGciv35fnXqAzYY2wHPCqz5WK1Z5RlQdWLBP8mGpcp2 UtWqAusyG6gQjFJntWJbduHziq7GUd+XyLOqmYnTpBkgkgLFacdX/vlyALyjzwop o+C3lz/s2Mhvw1AZbvRJWuqfz7DD7Tr1il6RPdNzxz/gQcl96qd2sP45vueF60S0 kGO5RVK9UHVKXCPjAXLh5Of4IYJup9ToYLE+qvcr6Da59UJE/5RyCg/mJnh8jrEa LE/Hv5FkBWrJBxqK13YBJ9a18JY0VHS/r6vfOzv3uGfKr3Y2Dj78csHe6K9GibJg wa+S3hj/6H7v2i+RW+HJBuTb4KMv0XU7Maug0L8NUx9bAro/wE1JFkkTeWJS7hXy fmxCiHI+j/vyxNnDVmNj65UYrjMfUUH3oN3ET2fB1SzTZnkC9ZQ= =Xfj0 -----END PGP SIGNATURE-----