./lang/python36, Interpreted, interactive, object-oriented programming language

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 3.6.11, Package name: python36-3.6.11, Maintainer: pkgsrc-users

Python is an interpreted, interactive, object-oriented
programming language that combines remarkable power with
very clear syntax. For an introduction to programming in
Python you are referred to the Python Tutorial. The
Python Library Reference documents built-in and standard
types, constants, functions and modules. Finally, the
Python Reference Manual describes the syntax and semantics
of the core language in (perhaps too) much detail.

Python's basic power can be extended with your own modules
written in C or C++. On most systems such modules may be
dynamically loaded. Python is also adaptable as an exten-
sion language for existing applications. See the internal
documentation for hints.

This package provides Python version 3.6.x.


Required to run:
[security/openssl] [devel/libffi]

Required to build:
[devel/readline] [pkgtools/cwrappers]

Package options: x11

Master sites:

SHA1: 0840e6b726446fccaef483dad84cce8fdc683077
RMD160: d1577bbfb4fb6b9c47389383e2b5ff9abb7db9e3
Filesize: 16809.605 KB

Version history: (Expand)


CVS history: (Expand)


   2020-06-30 07:59:41 by Adam Ciarcinski | Files touched by this commit (6) | Package updated
Log message:
python36: updated to 3.6.11

Python 3.6.11 final

There were no new changes in version 3.6.11.

Python 3.6.11 release candidate 1

Security
bpo-39073: Disallow CR or LF in email.headerregistry.Address arguments to guard \ 
against header injection attacks.
bpo-38576: Disallow control characters in hostnames in http.client, addressing \ 
CVE-2019-18348. Such potentially malicious header injection URLs now cause a \ 
InvalidURL to be raised.
bpo-39503: CVE-2020-8492: The AbstractBasicAuthHandler class of the \ 
urllib.request module uses an inefficient regular expression which can be \ 
exploited by an attacker to cause a denial of service. Fix the regex to prevent \ 
the catastrophic backtracking. Vulnerability reported by Ben Caller and Matt \ 
Schwager.
bpo-39401: Avoid unsafe load of api-ms-win-core-path-l1-1-0.dll at startup on \ 
Windows 7.

Core and Builtins
bpo-39510: Fix segfault in readinto() method on closed BufferedReader.
bpo-39421: Fix possible crashes when operating with the functions in the heapq \ 
module and custom comparison operators.
Library
bpo-39503: AbstractBasicAuthHandler of urllib.request now parses all \ 
WWW-Authenticate HTTP headers and accepts multiple challenges per header: use \ 
the realm of the first Basic challenge.
   2020-05-21 19:25:13 by Leonardo Taccari | Files touched by this commit (4)
Log message:
python*: findlib subst class can be a noop

It is licit to be a noop for findlib subst class when PREFIX is
`/usr/local'.

Thanks to <jklos>! (via PR pkg/54758)
   2020-05-14 23:43:12 by Tobias Nygren | Files touched by this commit (4)
Log message:
document non-obvious readline build dependency
   2020-03-21 11:37:15 by Thomas Klausner | Files touched by this commit (3)
Log message:
python3*: link pydoc in ALTERNATIVES instead of pydoc3
   2020-03-08 17:42:31 by Benny Siegert | Files touched by this commit (67)
Log message:
Revbump packages depending on libffi after .so version change.

Requested by Matthias Ferdinand and Oskar on pkgsrc-users.
   2020-01-21 11:57:26 by Kamil Rytarowski | Files touched by this commit (4)
Log message:
python*: Switch to USE_X11=weak
   2020-01-18 22:51:16 by Jonathan Perkin | Files touched by this commit (1836)
Log message:
*: Recursive revision bump for openssl 1.1.1.
   2019-12-28 23:24:01 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
python36: updated to 3.6.10

Python 3.6.10 is the next security fix release of Python 3.6.