Date: Sun, 19 Jun 2016 06:43:19 +0000 From: bugzilla-noreply@freebsd.org To: python@FreeBSD.org Subject: [Bug 210325] lang/python35, lang/python34, lang/python33, lang/python27: Backport patches for CVE-2016-5636 Message-ID: <bug-210325-21822-NcnQRnBfwV@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-210325-21822@https.bugs.freebsd.org/bugzilla/> References: <bug-210325-21822@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D210325 --- Comment #7 from commit-hook@freebsd.org --- A commit references this bug: Author: rm Date: Sun Jun 19 06:42:27 UTC 2016 New revision: 417101 URL: https://svnweb.freebsd.org/changeset/ports/417101 Log: MFH: r417019 lang/python[xx]: backport upstream fix for CVE-2016-5636 Add patch for integer overflow in zipimport module to all our python port= s. While I'm here, get rid of -f flag in ${RM} invocation, because ${RM} alr= eady expands to rm -f, so in result we are getting something like: /bin/rm -f -f /wrkdirs/usr/ports/lang/python35/work/stage/usr/local/lib/libpython3.so PR: 210325 Submitted by: Vladimir Krstulja <vlad-fbsd@acheronmedia.com> Security: 1d0f6852-33d8-11e6-a671-60a44ce6887b With hat: python Approved by: ports-secteam (junovitch) Changes: _U branches/2016Q2/ branches/2016Q2/lang/python27/Makefile branches/2016Q2/lang/python27/files/patch-Modules_zipimport.c branches/2016Q2/lang/python33/Makefile branches/2016Q2/lang/python33/files/patch-Modules_zipimport.c branches/2016Q2/lang/python34/Makefile branches/2016Q2/lang/python34/files/patch-Modules_zipimport.c branches/2016Q2/lang/python35/Makefile branches/2016Q2/lang/python35/files/patch-Modules_zipimport.c --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-210325-21822-NcnQRnBfwV>