Home Explore Help
Register Sign In
PUBLIC_REPOS
/
buildroot
mirror of git://git.buildroot.net/buildroot
2
1
Fork 0
Files
Browse Source

package/python3: security bump to version 3.10.7

Fix CVE-2020-10735

https://github.com/python/cpython/blob/v3.10.7/Misc/NEWS.d/3.10.7.rst

Signed-off-by: Daniel Lang <d.lang@abatec.at>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Lang Daniel 2 years ago
parent
1616816e13
commit
c0ee83d10b
3 changed files with 6 additions and 4 deletions
Split View Show Diff Stats
  1. 4 2
      package/python3/0032-lib-crypt-uClibc-ng-doesn-t-set-errno-when-encryptio.patch
  2. 1 1
      package/python3/python3.hash
  3. 1 1
      package/python3/python3.mk

+ 4 - 2
package/python3/0032-lib-crypt-uClibc-ng-doesn-t-set-errno-when-encryptio.patch
View File 

@@ -16,6 +16,8 @@ https://gitlab.com/buildroot.org/buildroot/-/jobs/830981979
 
 [2] https://cgit.uclibc-ng.org/cgi/cgit/uclibc-ng.git/tree/libcrypt/crypt.c?h=v1.0.36#n29
 
 
 Signed-off-by: Romain Naour <romain.naour@gmail.com>
 
+[Daniel: updated for 3.10.7]
 
+Signed-off-by: Daniel Lang <d.lang@abatec.at>
 
 ---
 
  Lib/crypt.py | 4 +++-
 
  1 file changed, 3 insertions(+), 1 deletion(-)
 
@@ -28,10 +30,10 @@ index 33dbc46bb3..4692a5270c 100644
 
          result = crypt('', salt)
 
      except OSError as e:
 
          # Not all libc libraries support all encryption methods.
 
--        if e.errno == errno.EINVAL:
 
+-        if e.errno in {errno.EINVAL, errno.EPERM, errno.ENOSYS}:
 
 +        # Not all libc libraries set errno when encryption method is not
 
 +        # available.
 
-+        if e.errno == errno.EINVAL or e.errno == 0:
 
++        if e.errno in {errno.EINVAL, errno.EPERM, errno.ENOSYS} or e.errno == 0:
 
              return False
 
          raise
 
      if result and len(result) == method.total_size:

+ 1 - 1
package/python3/python3.hash
View File 

@@ -1,3 +1,3 @@
 
 # Locally computed
 
-sha256  f795ff87d11d4b0c7c33bc8851b0c28648d8a4583aa2100a98c22b4326b6d3f3  Python-3.10.6.tar.xz
 
+sha256  6eed8415b7516fb2f260906db5d48dd4c06acc0cb24a7d6cc15296a604dcdc48  Python-3.10.7.tar.xz
 
 sha256  f03e17cd594c2085f66a454e695c7ebe5b4d3c0eff534f4f194abc2fd164621b  LICENSE

+ 1 - 1
package/python3/python3.mk
View File 

@@ -5,7 +5,7 @@
 
 ################################################################################
 
 
 PYTHON3_VERSION_MAJOR = 3.10
 
-PYTHON3_VERSION = $(PYTHON3_VERSION_MAJOR).6
 
+PYTHON3_VERSION = $(PYTHON3_VERSION_MAJOR).7
 
 PYTHON3_SOURCE = Python-$(PYTHON3_VERSION).tar.xz
 
 PYTHON3_SITE = https://python.org/ftp/python/$(PYTHON3_VERSION)
 
 PYTHON3_LICENSE = Python-2.0, others