package/python: security bump to version 2.7.17

This release fixes CVE-2019-9740, CVE-2019-9948, CVE-2019-15903. Adjust 0002-Fix-get_python_inc-for-cross-compilation.patch for 2.7.17. Remove the following patches (now on upstream): * 0035-bpo-35907-CVE-2019-9948-urllib-rejects-local_file-sc.patch * 0036-bpo-36216-Add-check-for-characters-in-netloc-that-no.patch * 0037-3.7-bpo-36216-Only-print-test-messages-when-verbose-.patch * 0038-bpo-36742-Fixes-handling-of-pre-normalization-charac.patch * 0039-bpo-36742-Corrects-fix-to-handle-decomposition-in-us.patch * 0040-2.7-bpo-36742-Fix-urlparse.urlsplit-error-message-fo.patch * 0041-bpo-30458-Disallow-control-chars-in-http-URLs-GH-127.patch Full release details at: https://github.com/python/cpython/blob/v2.7.17/Misc/NEWS.d/2.7.17rc1.rst run-tests results: 10:30:20 TestPython2 Starting 10:30:21 TestPython2 Building 10:37:37 TestPython2 Building done 10:37:47 TestPython2 Cleaning up . ---------------------------------------------------------------------- Ran 1 test in 448.616s OK Signed-off-by: Asaf Kahlon <asafka7@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2026-01-02 21:48:20 +03:00 · 2019-10-20 11:15:41 +03:00
parent d9b606bc0f
commit 7df07cb611
10 changed files with 15 additions and 675 deletions
--- a/package/python/python.hash
+++ b/package/python/python.hash
@@ -1,5 +1,5 @@
-# From https://www.python.org/downloads/release/python-2716/
-md5 30157d85a2c0479c09ea2cbe61f2aaf5 Python-2.7.16.tar.xz
+# From https://www.python.org/downloads/release/python-2717/
+md5 b3b6d2c92f42a60667814358ab9f0cfd Python-2.7.17.tar.xz
 # Locally calculated
-sha256 f222ef602647eecb6853681156d32de4450a2c39f4de93bd5b20235f2e660ed7  Python-2.7.16.tar.xz
+sha256 4d43f033cdbd0aa7b7023c81b0e986fd11e653b5248dac9144d508f11812ba41  Python-2.7.17.tar.xz
 sha256 a77d71d6be6f9032e6b6e5d2cf6da68f9eeab9036edfbc043633c8979cd5e82c  LICENSE