package/python3: security bump to version 3.9.2

Fixes the following security issue: - CVE-2021-23336: urllib.parse.parse_qsl(): Web cache poisoning - `; ` as a query args separator https://bugs.python.org/issue42967 And fixes a number of issues. For details, see the changelog: https://docs.python.org/release/3.9.2/whatsnew/changelog.html Drop the now upstreamed security patch and update the license hash for a change of copyright year: -2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020 Python Software Foundation; +2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021 Python Software Foundation; Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2026-01-19 00:51:35 +03:00 · 2021-02-23 14:50:31 +01:00
parent b50eef1dfd
commit 4e6ee9eb53
3 changed files with 5 additions and 198 deletions
--- a/package/python3/python3.mk
+++ b/package/python3/python3.mk
@@ -5,15 +5,12 @@
 ################################################################################

 PYTHON3_VERSION_MAJOR = 3.9
-PYTHON3_VERSION = $(PYTHON3_VERSION_MAJOR).1
+PYTHON3_VERSION = $(PYTHON3_VERSION_MAJOR).2
 PYTHON3_SOURCE = Python-$(PYTHON3_VERSION).tar.xz
 PYTHON3_SITE = https://python.org/ftp/python/$(PYTHON3_VERSION)
 PYTHON3_LICENSE = Python-2.0, others
 PYTHON3_LICENSE_FILES = LICENSE

-# 0035-closes-bpo-42938-Replace-snprintf-with-Python-unicod.patch
-PYTHON3_IGNORE_CVES += CVE-2021-3177
-
 # This host Python is installed in $(HOST_DIR), as it is needed when
 # cross-compiling third-party Python modules.