summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
JinWang An [Fri, 9 Apr 2021 07:37:41 +0000 (16:37 +0900)]
[CVE-2020-8492] Fix AbstractBasicAuthHandler
Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10,
3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server
to conduct Regular Expression Denial of Service (ReDoS) attacks
against a client because of urllib.request.AbstractBasicAuthHandler
catastrophic backtracking.
Change-Id: I44694a5b63583e554fcb6c6ec0b78c1c640d8f85
Signed-off-by: JinWang An <jinwang.an@samsung.com>
DongHun Kwak [Sun, 16 Feb 2020 23:47:44 +0000 (08:47 +0900)]
Remove gcc_version macro at spec file
Change-Id: If74f7d4bd5deff2d60fa4051e09bc20f648353d4
DongHun Kwak [Tue, 24 Dec 2019 06:55:54 +0000 (15:55 +0900)]
Fix build error
Add gcc version check logic for nis.so
Change-Id: I9ea2b37545e0c4aaf5a96cdbfc00a7c9bd58f721
Donghun Kwak [Mon, 23 Dec 2019 23:02:22 +0000 (23:02 +0000)]
Merge "[Tizen 6.0] Enable build" into tizen_base
Mikhail Kashkarov [Mon, 2 Dec 2019 17:17:52 +0000 (20:17 +0300)]
[Tizen 6.0] Enable build
The NIS(+) name service modules are deprecated since glibc 2.27 and will not be
built or installed by default.
Change-Id: I7837dcd2b8fe52c210d01510a1f2fc3e58554073
Signed-off-by: Mikhail Kashkarov <m.kashkarov@partner.samsung.com>
Hyunjee Kim [Mon, 25 Nov 2019 08:25:49 +0000 (17:25 +0900)]
Bump to python 2.7.17
Change-Id: I2fd8a054291e106d15ec215436225e05f1892bce
Signed-off-by: Hyunjee Kim <hj0426.kim@samsung.com>
Hyunjee Kim [Mon, 25 Nov 2019 08:13:55 +0000 (17:13 +0900)]
Merge branch 'tizen_base' of ssh://review.tizen.org:29418/platform/upstream/python into tizen_base
Change-Id: I9fd2ad642ab1efbdb407fcbf5c7401346ecf8076
Signed-off-by: Hyunjee Kim <hj0426.kim@samsung.com>
DongHun Kwak [Thu, 27 Dec 2018 04:47:48 +0000 (13:47 +0900)]
Rebase for python 2.7.17
Change-Id: Icff2d8252c3fa81efa45f009602a6088c27f47c4
Signed-off-by: Hyunjee Kim <hj0426.kim@samsung.com>
Hyunjee Kim [Mon, 25 Nov 2019 08:02:02 +0000 (17:02 +0900)]
Imported Upstream version 2.7.17
Hyunjee Kim [Mon, 25 Nov 2019 08:01:31 +0000 (17:01 +0900)]
Imported Upstream version 2.7.16
Dong-hee Na [Tue, 1 Oct 2019 10:58:01 +0000 (19:58 +0900)]
[CVE-2019-16935] bpo-38243: Escape the server title of DocXMLRPCServer (GH-16447)
Escape the server title of DocXMLRPCServer.DocXMLRPCServer
when rendering the document page as HTML.
Change-Id: Id7e5a2c440b9a2e9bc832bd321740ce0c1581edf
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
Roberto C. Sánchez [Sat, 14 Sep 2019 17:26:38 +0000 (13:26 -0400)]
bpo-34155: Dont parse domains containing @ (GH-13079) (GH-16006)
This change skips parsing of email addresses where domains include a "@" character, which can be maliciously used since the local part is returned as a complete address.
(cherry picked from commit
8cb65d1381b027f0b09ee36bfed7f35bb4dec9a9)
Excludes changes to Lib/email/_header_value_parser.py, which did not
exist in 2.7.
Co-authored-by: jpic <jpic@users.noreply.github.com>
https://bugs.python.org/issue34155
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
Change-Id: Ice4cb0bcaf4fdd4172b603d1a19def3bbbbec2ea
DongHun Kwak [Mon, 19 Aug 2019 02:37:36 +0000 (11:37 +0900)]
Migrate to openssl 1.1
Change-Id: Ifefed273e76951c416b527c9ceee26c9a9df449b
DongHun Kwak [Fri, 22 Mar 2019 05:39:46 +0000 (14:39 +0900)]
Add PIE option at python makefile
Change-Id: I4138e7d42a195099781148100220dc1c136d5714
Steve Dower [Thu, 7 Mar 2019 17:08:45 +0000 (09:08 -0800)]
[CVE-2019-9636]bpo-36216: Add check for characters in netloc that normalize to separators (GH-12201)
Change-Id: I728d96130c1208753eae3f0646aa9cab2b76dd9b
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Thu, 27 Dec 2018 04:47:48 +0000 (13:47 +0900)]
Bump to python 2.7.15
[Model] All
[BinType] AP
[Customer] OPEN
[Issue#] N/A
[Request] N/A
[Occurrence Version] N/A
[Problem] python version upgrade
[Cause & Measure]
[Checking Method]
[Team] Open Source Management and Setting Part
[Developer] dh0128.kwak
[Solution company] Samsung
[Change Type] N/A
Change-Id: I28e8832b87b20556efd740ce95c0be11c94bc206
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 22 Aug 2018 06:55:41 +0000 (15:55 +0900)]
Imported Upstream version 2.7.15
Change-Id: Id9c63619cb3e0b8e0af22357474f6f6429c63c61
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 22 Aug 2018 06:55:10 +0000 (15:55 +0900)]
Imported Upstream version 2.7.14
Change-Id: Icfe8dc39f6e866f9cdf059cfd57789fed01f9469
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 12 Jul 2017 02:06:20 +0000 (11:06 +0900)]
Imported Upstream version 2.7.13
Change-Id: Ide143efb88a819e2d9b350dbcbbfa75b890f0667
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 12 Jul 2017 02:05:55 +0000 (11:05 +0900)]
Imported Upstream version 2.7.12
Change-Id: Id086dcc8e315c8ad61502768ef9b92372461e560
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 12 Jul 2017 02:05:38 +0000 (11:05 +0900)]
Imported Upstream version 2.7.11
Change-Id: I6fd1d4f1828aa56cf9e1ece97699852529157243
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 12 Jul 2017 02:05:23 +0000 (11:05 +0900)]
Imported Upstream version 2.7.10
Change-Id: I71e04a6e83b31198e3aff21913814359e60b7843
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
DongHun Kwak [Wed, 12 Jul 2017 02:04:35 +0000 (11:04 +0900)]
Imported Upstream version 2.7.9
Change-Id: If7320cd9a5b047aa0471ec569221ef7d9bc978b4
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
Chanho Park [Tue, 19 Aug 2014 10:35:08 +0000 (19:35 +0900)]
Imported Upstream version 2.7.8
Anas Nashif [Wed, 7 Nov 2012 15:15:08 +0000 (07:15 -0800)]
Imported Upstream version 2.7.3
projects / platform / upstream / python.git / log