Accepted python3.7 3.7.3-2+deb10u5 (source) into oldoldstable
- To: debian-lts-changes@lists.debian.org, dispatch@tracker.debian.org
- Subject: Accepted python3.7 3.7.3-2+deb10u5 (source) into oldoldstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Thu, 29 Jun 2023 23:00:18 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: python3.7_3.7.3-2+deb10u5_source.changes
- Debian-source: python3.7
- Debian-suite: oldoldstable
- Debian-version: 3.7.3-2+deb10u5
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=tExscWrm8GiS2wYRibGOqLCQpe03iatJmiW0xnyl/DU=; b=Ij9FKcA05szNgaro5eeVY/ZGo8 BHu4C8WRgitWHYrnQ4vV857kRt7cvKHcZfZpMQWARLKMMoUURUpv6Quzz4T3YC4H6cA3NqImkVPP0 GvE1ZqMx1zdfUD/w92QdRV1LVZ8YrO3bTg78SEevCU3Wkrwj/CaT1XwcrJ10BfNkFO6D8VzlfeKjc h7+KAIJ4asMPCRS9CEgpZ8/uwrZSQVoolhf3bZTLk52+zzl9BtM9N5Aptpn9Kt2uXCpZ7VohXEyc7 8sDaA3SfcbDmGfosWCqGBOXgoju34ifVSjuYrNutAfM4XMPmn9k8gefXcL4r8nAvJDa0FtTRpzn9B SI+GQFVQ==;
- Mail-followup-to: debian-lts@lists.debian.org
- Message-id: <E1qF0cc-00AJbW-SH@seger.debian.org>
- Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 29 Jun 2023 21:03:57 +0300
Source: python3.7
Architecture: source
Version: 3.7.3-2+deb10u5
Distribution: buster-security
Urgency: medium
Maintainer: Matthias Klose <doko@debian.org>
Changed-By: Adrian Bunk <bunk@debian.org>
Changes:
python3.7 (3.7.3-2+deb10u5) buster-security; urgency=medium
.
* Non-maintainer upload by the LTS Security Team.
* CVE-2015-20107: The mailcap module did not add escape characters
into commands discovered in the system mailcap file.
* CVE-2020-10735: Prevent DoS with very large int.
* CVE-2021-3426: Remove the pydoc getfile feature which
could be abused to read arbitrary files on the disk.
* CVE-2021-3733: Regular Expression Denial of Service in urllib's
AbstractBasicAuthHandler class.
* CVE-2021-3737: Infinite loop in the HTTP client code.
* CVE-2021-4189: Make ftplib not trust the PASV response.
* CVE-2022-45061: Quadratic time in the IDNA decoder.
Checksums-Sha1:
ae989b10bca0c7ab347c1d649008c864338b0c76 3404 python3.7_3.7.3-2+deb10u5.dsc
e3584650a06ae2765da0678176deae9d133f1b3d 17108364 python3.7_3.7.3.orig.tar.xz
2bce3e56d3467da122d8ac6fef55a1002632eba4 240848 python3.7_3.7.3-2+deb10u5.debian.tar.xz
Checksums-Sha256:
3391b216d88264dbc3cb357495e9488bfe53602bc9c857d81aae180554b0ebb2 3404 python3.7_3.7.3-2+deb10u5.dsc
da60b54064d4cfcd9c26576f6df2690e62085123826cff2e667e72a91952d318 17108364 python3.7_3.7.3.orig.tar.xz
c01dc42ccca8f1fa0087dfaba9347e31c163e8a147c45dda81172869887945c3 240848 python3.7_3.7.3-2+deb10u5.debian.tar.xz
Files:
8fca8701c20c644f81969bde8cfa3b27 3404 python optional python3.7_3.7.3-2+deb10u5.dsc
93df27aec0cd18d6d42173e601ffbbfd 17108364 python optional python3.7_3.7.3.orig.tar.xz
3ace96d9e70b03dc0279f94969b799f7 240848 python optional python3.7_3.7.3-2+deb10u5.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=HfR+
-----END PGP SIGNATURE-----