Date: Sat, 03 Jan 2026 22:48:56 +0000 From: bugzilla-noreply@freebsd.org To: python@FreeBSD.org Subject: [Bug 291609] lang/python311: Missing security update Message-ID: <bug-291609-21822-kT5whbti1E@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-291609-21822@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=291609 --- Comment #7 from commit-hook@FreeBSD.org --- A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=66173037774d8648a59e30b424692ae80dbc20b3 commit 66173037774d8648a59e30b424692ae80dbc20b3 Author: Matthias Andree <mandree@FreeBSD.org> AuthorDate: 2026-01-03 22:39:35 +0000 Commit: Matthias Andree <mandree@FreeBSD.org> CommitDate: 2026-01-03 22:42:02 +0000 lang/python31[012]: deprecate 2026-03-31 Since the current Python upstream maintainers have not yet released security fix releases to match 3.14.2 and 3.13.11, meaning that we have about three unfixed security issues per 3.12/3.11/3.10 release, and the current FreeBSD python@ team is unwilling to take approved upstream patches individually (see PR), we need to expedite the removal of vulnerable versions and the transition to 3.13/3.14. Deprecate all "security support" releases of Python that are not in the bugfix phase. PR: 291609 lang/python310/Makefile | 6 +++--- lang/python311/Makefile | 3 +++ lang/python312/Makefile | 3 +++ 3 files changed, 9 insertions(+), 3 deletions(-) -- You are receiving this mail because: You are the assignee for the bug.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-291609-21822-kT5whbti1E>