diff options
author | Ned Deily <nad@python.org> | 2021-09-03 23:49:21 -0400 |
---|---|---|
committer | Ned Deily <nad@python.org> | 2021-09-03 23:49:21 -0400 |
commit | 1f97973f630fda109039b2a8c8024a70eb92932f (patch) | |
tree | 426bc5ffe4ac380a958ac2a62818506b1da98fcb | |
parent | [3.7] bpo-44394: Update libexpat copy to 2.4.1 (GH-26945) (GH-28042) (diff) | |
download | cpython-1f97973f630fda109039b2a8c8024a70eb92932f.tar.gz cpython-1f97973f630fda109039b2a8c8024a70eb92932f.tar.bz2 cpython-1f97973f630fda109039b2a8c8024a70eb92932f.zip |
3.7.12v3.7.12
-rw-r--r-- | Include/patchlevel.h | 4 | ||||
-rw-r--r-- | Lib/pydoc_data/topics.py | 2 | ||||
-rw-r--r-- | Misc/NEWS.d/3.7.12.rst | 30 | ||||
-rw-r--r-- | Misc/NEWS.d/next/Library/2021-08-26-16-25-48.bpo-45001.tn_dKp.rst | 2 | ||||
-rw-r--r-- | Misc/NEWS.d/next/Security/2021-05-08-11-50-46.bpo-43124.2CTM6M.rst | 2 | ||||
-rw-r--r-- | Misc/NEWS.d/next/Security/2021-06-29-02-45-53.bpo-44394.A220N1.rst | 3 | ||||
-rw-r--r-- | README.rst | 4 |
7 files changed, 35 insertions, 12 deletions
diff --git a/Include/patchlevel.h b/Include/patchlevel.h index 44524f66696..891f8e9f47f 100644 --- a/Include/patchlevel.h +++ b/Include/patchlevel.h @@ -18,12 +18,12 @@ /*--start constants--*/ #define PY_MAJOR_VERSION 3 #define PY_MINOR_VERSION 7 -#define PY_MICRO_VERSION 11 +#define PY_MICRO_VERSION 12 #define PY_RELEASE_LEVEL PY_RELEASE_LEVEL_FINAL #define PY_RELEASE_SERIAL 0 /* Version as a string */ -#define PY_VERSION "3.7.11+" +#define PY_VERSION "3.7.12" /*--end constants--*/ /* Version as a single 4-byte hex number, e.g. 0x010502B2 == 1.5.2b2. diff --git a/Lib/pydoc_data/topics.py b/Lib/pydoc_data/topics.py index 108e492ee75..f0e0f6db6e9 100644 --- a/Lib/pydoc_data/topics.py +++ b/Lib/pydoc_data/topics.py @@ -1,5 +1,5 @@ # -*- coding: utf-8 -*- -# Autogenerated by Sphinx on Mon Jun 28 12:37:39 2021 +# Autogenerated by Sphinx on Fri Sep 3 23:33:01 2021 topics = {'assert': 'The "assert" statement\n' '**********************\n' '\n' diff --git a/Misc/NEWS.d/3.7.12.rst b/Misc/NEWS.d/3.7.12.rst new file mode 100644 index 00000000000..51f4c7c3d45 --- /dev/null +++ b/Misc/NEWS.d/3.7.12.rst @@ -0,0 +1,30 @@ +.. bpo: 44394 +.. date: 2021-06-29-02-45-53 +.. nonce: A220N1 +.. release date: 2021-09-03 +.. section: Security + +Update the vendored copy of libexpat to 2.4.1 (from 2.2.8) to get the fix +for the CVE-2013-0340 "Billion Laughs" vulnerability. This copy is most used +on Windows and macOS. + +.. + +.. bpo: 43124 +.. date: 2021-05-08-11-50-46 +.. nonce: 2CTM6M +.. section: Security + +Made the internal ``putcmd`` function in :mod:`smtplib` sanitize input for +presence of ``\r`` and ``\n`` characters to avoid (unlikely) command +injection. + +.. + +.. bpo: 45001 +.. date: 2021-08-26-16-25-48 +.. nonce: tn_dKp +.. section: Library + +Made email date parsing more robust against malformed input, namely a +whitespace-only ``Date:`` header. Patch by Wouter Bolsterlee. diff --git a/Misc/NEWS.d/next/Library/2021-08-26-16-25-48.bpo-45001.tn_dKp.rst b/Misc/NEWS.d/next/Library/2021-08-26-16-25-48.bpo-45001.tn_dKp.rst deleted file mode 100644 index 55cc409d0da..00000000000 --- a/Misc/NEWS.d/next/Library/2021-08-26-16-25-48.bpo-45001.tn_dKp.rst +++ /dev/null @@ -1,2 +0,0 @@ -Made email date parsing more robust against malformed input, namely a -whitespace-only ``Date:`` header. Patch by Wouter Bolsterlee. diff --git a/Misc/NEWS.d/next/Security/2021-05-08-11-50-46.bpo-43124.2CTM6M.rst b/Misc/NEWS.d/next/Security/2021-05-08-11-50-46.bpo-43124.2CTM6M.rst deleted file mode 100644 index e897d6cd364..00000000000 --- a/Misc/NEWS.d/next/Security/2021-05-08-11-50-46.bpo-43124.2CTM6M.rst +++ /dev/null @@ -1,2 +0,0 @@ -Made the internal ``putcmd`` function in :mod:`smtplib` sanitize input for -presence of ``\r`` and ``\n`` characters to avoid (unlikely) command injection. diff --git a/Misc/NEWS.d/next/Security/2021-06-29-02-45-53.bpo-44394.A220N1.rst b/Misc/NEWS.d/next/Security/2021-06-29-02-45-53.bpo-44394.A220N1.rst deleted file mode 100644 index e32563d2535..00000000000 --- a/Misc/NEWS.d/next/Security/2021-06-29-02-45-53.bpo-44394.A220N1.rst +++ /dev/null @@ -1,3 +0,0 @@ -Update the vendored copy of libexpat to 2.4.1 (from 2.2.8) to get the fix -for the CVE-2013-0340 "Billion Laughs" vulnerability. This copy is most used -on Windows and macOS. diff --git a/README.rst b/README.rst index 2f7b76e07e2..aafde33c9fb 100644 --- a/README.rst +++ b/README.rst @@ -1,5 +1,5 @@ -This is Python version 3.7.11+ -============================== +This is Python version 3.7.12 +============================= .. image:: https://travis-ci.org/python/cpython.svg?branch=3.7 :alt: CPython build status on Travis CI |