Date: Thu, 28 May 2020 15:43:48 +0000 From: bugzilla-noreply@freebsd.org To: python@FreeBSD.org Subject: maintainer-feedback requested: [Bug 246808] Update lang/python36 to 3.6.10 Message-ID: <bug-246808-21822-ImMDkArotF@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-246808-21822@https.bugs.freebsd.org/bugzilla/> References: <bug-246808-21822@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
Bugzilla Automation <bugzilla@FreeBSD.org> has asked freebsd-python mailing list <python@FreeBSD.org> for maintainer-feedback: Bug 246808: Update lang/python36 to 3.6.10 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D246808 --- Description --- Note: 246738 references 3.6.11 but this release has not been scheduled yet.= I agree with Janos Mohacsi (#246738 author) that it would be nice to address = the security issue in lang/python36. This patch updates lang/python36 to 3.6.10 and includes the accepted CVE-2020-8492 patch set (https://github.com/python/cpython/pull/19304). Here is the link to the Python bug tracker for CVE-2020-8492, which they tr= ack as "bpo-39503": https://bugs.python.org/issue39503. According to the Python 3.6 changelog (https://docs.python.org/3.6/whatsnew/changelog.html#python-3-6-10-final), = the "bpo-39503" is part of the unscheduled "Python next" release.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-246808-21822-ImMDkArotF>