Navigation:
Browse pkgsrc
(this page)| 2012-08-14 20:41:19 by Matthias Drochner | Files touched by this commit (3) |
Log message: as with python27: avoid POSIX semaphores on NetBSD, this is broken at least on -current |
| 2012-05-13 11:00:43 by OBATA Akio | Files touched by this commit (4) |
Log message: fixes reverse condition usage of CHECK_BUILTIN.openssl. |
| 2012-05-07 03:54:16 by David A. Holland | Files touched by this commit (473) |
Log message: Set BUILDLINK_ABI_DEPENDS correctly (with +=, not ?=) It turns out there were a lot of these. |
| 2012-05-06 00:16:15 by Joerg Sonnenberger | Files touched by this commit (3) |
Log message: Fix build of py26-expat against expat-2.0. Bump revision. |
2012-04-14 12:47:19 by OBATA Akio | Files touched by this commit (31) |  |
Log message: Update python26 to 2.6.8. (CVE-2012-0845, CVE-2012-1150 are alredy fixed in pkgsrc, CVE-2012-0876 is not affect to pkgsrc, using external expat) What's New in Python 2.6.8? =========================== *Release date: 2012-04-10* No changes since 2.6.8rc2. What's New in Python 2.6.8 rc 2? ================================ *Release date: 2012-03-17* Library ------- - Issue #14234: CVE-2012-0876: Randomize hashes of xml attributes in the hash table internal to the pyexpat module's copy of the expat library to avoid a denial of service due to hash collisions. Patch by David Malcolm with some modifications by the expat project. What's New in Python 2.6.8 rc 1? ================================ *Release date: 2012-02-23* Core and Builtins ----------------- - Issue #13703: oCERT-2011-003 CVE-2012-1150: add -R command-line option and PYTHONHASHSEED environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. Patch by David Malcolm, based on work by Victor Stinner. Library ------- - Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon malformed POST request. - Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC IV attack countermeasure. |
| 2012-03-25 11:09:05 by Matthias Scheler | Files touched by this commit (29) |
Log message: Add a fix for the DoS vulnerability reported in CVE-2012-1150 taken from the Python Mercurial repository. |
| 2012-02-15 13:21:41 by Matthias Drochner | Files touched by this commit (3) |
Log message: add patch from Python issue#14001 to fix xmlrpc server endless loop by malformed request bump PKGREV |
| 2012-01-18 15:00:11 by Adam Ciarcinski | Files touched by this commit (1) |
Log message: Revbump after updating db5 |
| 2011-12-16 18:04:18 by Hans Rosenfeld | Files touched by this commit (10) |
Log message: On SunOS, don't ever override _XOPEN_SOURCE if it is already set. Fixes build on SunOS with gcc>=4.6. |
| 2011-11-08 08:30:09 by Steven Drake | Files touched by this commit (10) |
Log message: Change a unused variable referacne to a fixed string that I missed when coping the Mac OS X sdk filename handling. Thank to Matthias Rampke in PR#45581 for catching this. |
New packages: