Change log for python-urllib3 package in Ubuntu
| 1 → 60 of 60 results | First • Previous • Next • Last |
python-urllib3 (2.0.7-2) unstable; urgency=medium * Team upload. * Remove build & autopkgtest dependency on python3-mock * Disable a test that compare today's date against some "expiry date". * Patch: add a patch from upstream to handle new Exception strings. -- Alexandre Detiste <email address hidden> Wed, 12 Jun 2024 20:04:48 +0200
Available diffs
- diff from 2.0.7-1 to 2.0.7-2 (1.5 KiB)
| Superseded in oracular-release |
| Published in noble-release |
| Deleted in noble-proposed (Reason: Moved to noble) |
python-urllib3 (2.0.7-1) experimental; urgency=medium
[ Stefano Rivera ]
* New upstream release.
* Drop six patch and dependency on python3-six, superseded upstream.
(Closes: #1025218, LP: #1897633)
* Drop bundled backports.makefile from copyright, removed upstream.
* Build with pybuild pyproject plugin.
* Mark Build-Depends with nocheck.
* Re-enable the full test suite.
* Patch: Handle ConnectionRefusedError in test.requires_network()
* Patch: Mark tests that require network
* Patch: Don't make requests to evil.com in tests.
* Export CI=1 in tests, to increase timeouts.
* Allow stderr in the autopkgtest.
* Patch: Skip expensive integration tests, that often cause timeouts.
-- Daniele Tricoli <email address hidden> Sun, 12 Nov 2023 23:57:09 +0100
Available diffs
- diff from 1.26.18-1 to 2.0.7-1 (316.1 KiB)
python-urllib3 (1.25.8-2ubuntu0.3) focal-security; urgency=medium
* SECURITY UPDATE: http cookie leakage via http redirect
- debian/patches/CVE-2023-43804.patch: removes the cookie from the
http request when it is redirected to a different origin.
- CVE-2023-43804
* SECURITY UPDATE: http body leakage via http redirect
- debian/patches/CVE-2023-45803.patch: removes the body from the
http request when it is redirected to a different origin and the
http verb is changed to GET.
- CVE-2023-45803
-- Jorge Sancho Larraz <email address hidden> Tue, 24 Oct 2023 21:57:53 +0200
Available diffs
python-urllib3 (1.26.5-1~exp1ubuntu0.1) jammy-security; urgency=medium
* SECURITY UPDATE: http cookie leakage via http redirect
- debian/patches/CVE-2023-43804.patch: removes the cookie from the
http request when it is redirected to a different origin.
- CVE-2023-43804
* SECURITY UPDATE: http body leakage via http redirect
- debian/patches/CVE-2023-45803.patch: removes the body from the
http request when it is redirected to a different origin and the
http verb is changed to GET.
- CVE-2023-45803
-- Jorge Sancho Larraz <email address hidden> Tue, 24 Oct 2023 17:20:49 +0200
Available diffs
python-urllib3 (1.26.12-1ubuntu0.1) lunar-security; urgency=medium
* SECURITY UPDATE: http cookie leakage via http redirect
- debian/patches/CVE-2023-43804.patch: removes the cookie from the
http request when it is redirected to a different origin.
- CVE-2023-43804
* SECURITY UPDATE: http body leakage via http redirect
- debian/patches/CVE-2023-45803.patch: removes the body from the
http request when it is redirected to a different origin and the
http verb is changed to GET.
- CVE-2023-45803
-- Jorge Sancho Larraz <email address hidden> Tue, 24 Oct 2023 09:47:28 +0200
Available diffs
python-urllib3 (1.26.16-1ubuntu0.1) mantic-security; urgency=medium
* SECURITY UPDATE: http cookie leakage via http redirect
- debian/patches/CVE-2023-43804.patch: removes the cookie from the
http request when it is redirected to a different origin.
- CVE-2023-43804
* SECURITY UPDATE: http body leakage via http redirect
- debian/patches/CVE-2023-45803.patch: removes the body from the
http request when it is redirected to a different origin and the
http verb is changed to GET.
- CVE-2023-45803
-- Jorge Sancho Larraz <email address hidden> Sun, 22 Oct 2023 13:46:37 +0200
Available diffs
python-urllib3 (1.26.18-1) unstable; urgency=medium
* Team upload.
* New upstream release.
- Fix CVE-2023-45803 (Closes: #1054226)
* Drop patch 02_require-cert-verification.patch, no longer needed.
(Closes: #1054212)
* Refresh patches.
-- Stefano Rivera <email address hidden> Sat, 21 Oct 2023 17:05:33 +0200
Available diffs
- diff from 1.26.16-1 to 1.26.18-1 (7.6 KiB)
| Superseded in noble-release |
| Published in mantic-release |
| Deleted in mantic-proposed (Reason: Moved to mantic) |
python-urllib3 (1.26.16-1) unstable; urgency=medium
* New upstream version 1.26.16
* Refresh patches.
* debian/control
- Update standards version to 4.6.2, no changes needed.
* debian/copyright
- Update copyright years.
-- Daniele Tricoli <email address hidden> Fri, 30 Jun 2023 01:10:18 +0200
Available diffs
- diff from 1.26.12-1 to 1.26.16-1 (10.9 KiB)
python-urllib3 (1.25.8-2ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: DoS via URL regex backtracking
- debian/patches/CVE-2021-33503.patch: improve performance of
sub-authority splitting in URL in src/urllib3/util/url.py,
test/test_util.py.
- CVE-2021-33503
-- Marc Deslauriers <email address hidden> Wed, 18 Jan 2023 10:50:06 -0500
Available diffs
| Superseded in mantic-release |
| Published in lunar-release |
| Deleted in lunar-proposed (Reason: Moved to lunar) |
python-urllib3 (1.26.12-1) unstable; urgency=medium * Team upload. * New upstream version 1.26.12 * Bump Standards-Version to 4.6.1 (no change) * Refresh patches -- Anthony Fok <email address hidden> Thu, 22 Sep 2022 15:14:17 -0600
Available diffs
- diff from 1.26.9-1 to 1.26.12-1 (13.0 KiB)
| Superseded in lunar-release |
| Obsolete in kinetic-release |
| Deleted in kinetic-proposed (Reason: Moved to kinetic) |
python-urllib3 (1.26.9-1) unstable; urgency=medium * New upstream version 1.26.9 * Refresh patches. * Add python3-brotli to B-D, Suggests and autopkgtest's Depends. -- Daniele Tricoli <email address hidden> Sat, 19 Mar 2022 01:35:39 +0100
Available diffs
- diff from 1.26.5-1~exp1 to 1.26.9-1 (31.7 KiB)
| Superseded in kinetic-release |
| Published in jammy-release |
| Obsolete in impish-release |
| Deleted in impish-proposed (Reason: Moved to impish) |
python-urllib3 (1.26.5-1~exp1) unstable; urgency=medium
* New upstream version 1.26.5
- CVE-2021-33503: Catastrophic backtracking in URL authority parser when
passed URL containing many @ characters. (Closes: #989848)
* Refresh patches.
-- Daniele Tricoli <email address hidden> Sun, 27 Jun 2021 17:02:18 +0200
Available diffs
- diff from 1.26.4-1 to 1.26.5-1~exp1 (68.6 KiB)
python-urllib3 (1.26.4-1) unstable; urgency=medium
* Team upload.
* New upstream release.
- Enforces certificate validation in some cases involving HTTPS to HTTPS
proxies CVE-2021-28363.
-- Stefano Rivera <email address hidden> Tue, 11 May 2021 20:30:00 -0400
Available diffs
| Superseded in impish-release |
| Obsolete in hirsute-release |
| Deleted in hirsute-proposed (Reason: Moved to hirsute) |
python-urllib3 (1.26.2-1ubuntu1) hirsute; urgency=medium
* SECURITY UPDATE: incorrect cert validation with HTTPS to HTTPS proxies
- debian/patches/CVE-2021-28363.patch: enable hostname verification for
HTTPS proxies with default cert in src/urllib3/connection.py,
test/conftest.py, test/with_dummyserver/test_proxy_poolmanager.py.
- CVE-2021-28363
-- Marc Deslauriers <email address hidden> Wed, 17 Mar 2021 07:00:54 -0400
Available diffs
python-urllib3 (1.26.2-1) unstable; urgency=medium
* New upstream version 1.26.2
* Refresh patches.
* debian/control
- Bump debhelper compatibility level to 13.
- Bump Standards-Version to 4.5.1 (no changes needed).
* debian/copyright
- Update copyright years.
* debian/rules
- Ignore test_ssltransport.py.
* debian/watch
- Bump version to 4.
-- Daniele Tricoli <email address hidden> Thu, 31 Dec 2020 02:22:32 +0100
Available diffs
- diff from 1.25.11-1 to 1.26.2-1 (92.9 KiB)
python-urllib3 (1.25.11-1) unstable; urgency=medium
* Team upload.
[ Ondřej Nový ]
* d/control: Update Maintainer field with new Debian Python Team
contact address.
* d/control: Update Vcs-* fields with new Debian Python Team Salsa
layout.
[ Dmitry Shachnev ]
* New upstream release.
* Refresh patches for the new release.
* Skip test_respect_retry_after_header_sleep test.
It needs pytest-freezegun module which is not packaged in Debian yet.
-- Dmitry Shachnev <email address hidden> Sat, 14 Nov 2020 15:40:30 +0300
Available diffs
- diff from 1.25.9-1 to 1.25.11-1 (14.7 KiB)
python-urllib3 (1.25.8-2ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: CRLF injection via method parameter
- debian/patches/CVE-2020-26137.patch: raise ValueError if method
contains control characters in src/urllib3/connection.py,
test/with_dummyserver/test_connectionpool.py.
- CVE-2020-26137
-- Marc Deslauriers <email address hidden> Thu, 01 Oct 2020 13:56:51 -0400
Available diffs
python-urllib3 (1.22-1ubuntu0.18.04.2) bionic-security; urgency=medium
* SECURITY UPDATE: CRLF injection via method parameter
- debian/patches/CVE-2020-26137.patch: raise ValueError if method
contains control characters in urllib3/connection.py,
test/with_dummyserver/test_connectionpool.py.
- CVE-2020-26137
-- Marc Deslauriers <email address hidden> Thu, 01 Oct 2020 14:00:15 -0400
Available diffs
python-urllib3 (1.13.1-2ubuntu0.16.04.4) xenial-security; urgency=medium
* SECURITY UPDATE: CRLF injection via method parameter
- debian/patches/CVE-2020-26137.patch: raise ValueError if method
contains control characters in urllib3/connection.py,
test/with_dummyserver/test_connectionpool.py.
- CVE-2020-26137
-- Marc Deslauriers <email address hidden> Thu, 01 Oct 2020 14:08:36 -0400
Available diffs
| Superseded in hirsute-release |
| Obsolete in groovy-release |
| Deleted in groovy-proposed (Reason: moved to Release) |
python-urllib3 (1.25.9-1) unstable; urgency=medium
* Team upload
* New upstream release
- Refresh patches
-- Scott Kitterman <email address hidden> Sat, 02 May 2020 13:14:11 -0400
Available diffs
- diff from 1.25.8-2 to 1.25.9-1 (29.5 KiB)
| Superseded in groovy-release |
| Published in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
python-urllib3 (1.25.8-2) unstable; urgency=medium
* Drop python2 support; Closes: #938244
* debian/control
- bump versioned b-d on six to >= 1.12.0 (the same version of the embedded
module); Closes: #950738
-- Sandro Tosi <email address hidden> Wed, 01 Apr 2020 11:35:50 -0400
Available diffs
- diff from 1.25.8-1 to 1.25.8-2 (1.2 KiB)
python-urllib3 (1.25.8-1) unstable; urgency=medium
* Team upload.
[ Debian Janitor ]
* Use secure URI in Homepage field.
* Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
Repository-Browse.
[ Håvard Flaget Aasen ]
* New upstream version 1.25.8
* Rebase patches.
* Update Standards-Version to 4.5.0
* Remove python-nose and python3-nose from build-dependency.
* Add Rules-Requires-Root: no
* Remove test/conftest.py during build.
-- Håvard Flaget Aasen <email address hidden> Sat, 25 Jan 2020 15:56:27 +0100
Available diffs
python-urllib3 (1.24.1-1ubuntu2) focal; urgency=medium * No-change rebuild to generate dependencies on python2. -- Matthias Klose <email address hidden> Tue, 17 Dec 2019 12:44:45 +0000
Available diffs
- diff from 1.24.1-1ubuntu1 to 1.24.1-1ubuntu2 (352 bytes)
python-urllib3 (1.13.1-2ubuntu0.16.04.3) xenial-security; urgency=medium
* SECURITY UPDATE: credential disclosure via cross-origin redirect
- debian/patches/CVE-2018-20060-*.patch: backport logic to strip
Authorization header when following a cross-origin redirect.
- CVE-2018-20060
* SECURITY UPDATE: CRLF injection issue
- debian/patches/CVE-2019-11236-1.patch: check for control chars in URL
in urllib3/connection.py, urllib3/contrib/pyopenssl.py,
urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-2.patch: percent-encode invalid target
characters in urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-3.patch: don't use embedded python-six
in urllib3/util/url.py.
- CVE-2019-11236
-- Marc Deslauriers <email address hidden> Mon, 13 May 2019 15:26:05 -0400
Available diffs
python-urllib3 (1.22-1ubuntu0.18.04.1) bionic-security; urgency=medium
* SECURITY UPDATE: credential disclosure via cross-origin redirect
- debian/patches/CVE-2018-20060-*.patch: backport logic to strip
Authorization header when following a cross-origin redirect.
- CVE-2018-20060
* SECURITY UPDATE: CRLF injection issue
- debian/patches/CVE-2019-11236-1.patch: check for control chars in URL
in urllib3/connection.py, urllib3/connectionpool.py,
urllib3/contrib/pyopenssl.py, urllib3/contrib/socks.py,
urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-2.patch: percent-encode invalid target
characters in urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-3.patch: don't use embedded python-six
in urllib3/util/url.py.
- CVE-2019-11236
* SECURITY UPDATE: CA cert mishandling
- debian/patches/CVE-2019-11324.patch: don't load system certificates
by default when any other CA cert parameters are specified in
urllib3/util/ssl_.py.
- CVE-2019-11324
* debian/patches/fix_cert_error.patch: fix failing test.
-- Marc Deslauriers <email address hidden> Mon, 13 May 2019 14:27:58 -0400
Available diffs
python-urllib3 (1.22-1ubuntu0.18.10.1) cosmic-security; urgency=medium
* SECURITY UPDATE: credential disclosure via cross-origin redirect
- debian/patches/CVE-2018-20060-*.patch: backport logic to strip
Authorization header when following a cross-origin redirect.
- CVE-2018-20060
* SECURITY UPDATE: CRLF injection issue
- debian/patches/CVE-2019-11236-1.patch: check for control chars in URL
in urllib3/connection.py, urllib3/connectionpool.py,
urllib3/contrib/pyopenssl.py, urllib3/contrib/socks.py,
urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-2.patch: percent-encode invalid target
characters in urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-3.patch: don't use embedded python-six
in urllib3/util/url.py.
- CVE-2019-11236
* SECURITY UPDATE: CA cert mishandling
- debian/patches/CVE-2019-11324.patch: don't load system certificates
by default when any other CA cert parameters are specified in
urllib3/util/ssl_.py.
- CVE-2019-11324
* debian/patches/fix_cert_error.patch: fix failing test.
-- Marc Deslauriers <email address hidden> Mon, 13 May 2019 14:27:58 -0400
Available diffs
python-urllib3 (1.24.1-1ubuntu0.1) disco-security; urgency=medium
* SECURITY UPDATE: CRLF injection issue
- debian/patches/CVE-2019-11236-1.patch: check for control chars in URL
in src/urllib3/connection.py, src/urllib3/connectionpool.py,
src/urllib3/contrib/pyopenssl.py, src/urllib3/contrib/socks.py,
src/urllib3/poolmanager.py, src/urllib3/response.py,
src/urllib3/util/ssl_.py, src/urllib3/util/url.py,
test/__init__.py, test/test_util.py,
test/with_dummyserver/test_https.py,
test/with_dummyserver/test_socketlevel.py.
- debian/patches/CVE-2019-11236-2.patch: percent-encode invalid target
characters in src/urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-3.patch: don't use embedded python-six
in src/urllib3/util/url.py.
- CVE-2019-11236
* SECURITY UPDATE: CA cert mishandling
- debian/patches/CVE-2019-11324.patch: don't load system certificates
by default when any other CA cert parameters are specified in
src/urllib3/util/ssl_.py.
- CVE-2019-11324
-- Marc Deslauriers <email address hidden> Mon, 13 May 2019 13:16:33 -0400
Available diffs
| Superseded in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to release) |
python-urllib3 (1.24.1-1ubuntu1) eoan; urgency=medium
* SECURITY UPDATE: CRLF injection issue
- debian/patches/CVE-2019-11236-1.patch: check for control chars in URL
in src/urllib3/connection.py, src/urllib3/connectionpool.py,
src/urllib3/contrib/pyopenssl.py, src/urllib3/contrib/socks.py,
src/urllib3/poolmanager.py, src/urllib3/response.py,
src/urllib3/util/ssl_.py, src/urllib3/util/url.py,
test/__init__.py, test/test_util.py,
test/with_dummyserver/test_https.py,
test/with_dummyserver/test_socketlevel.py.
- debian/patches/CVE-2019-11236-2.patch: percent-encode invalid target
characters in src/urllib3/util/url.py, test/test_util.py.
- debian/patches/CVE-2019-11236-3.patch: don't use embedded python-six
in src/urllib3/util/url.py.
- CVE-2019-11236
* SECURITY UPDATE: CA cert mishandling
- debian/patches/CVE-2019-11324.patch: don't load system certificates
by default when any other CA cert parameters are specified in
src/urllib3/util/ssl_.py.
- CVE-2019-11324
-- Marc Deslauriers <email address hidden> Mon, 13 May 2019 13:16:33 -0400
Available diffs
| Superseded in eoan-release |
| Obsolete in disco-release |
| Deleted in disco-proposed (Reason: moved to release) |
python-urllib3 (1.24.1-1) unstable; urgency=medium * Upload to unstable. -- Daniele Tricoli <email address hidden> Mon, 11 Feb 2019 02:14:53 +0100
Available diffs
- diff from 1.24-1 to 1.24.1-1 (2.7 KiB)
python-urllib3 (1.24-1) unstable; urgency=medium * Upload to unstable. (Closes: #911716) -- Daniele Tricoli <email address hidden> Thu, 25 Oct 2018 05:01:14 +0200
Available diffs
- diff from 1.22-1 to 1.24-1 (265.1 KiB)
python-urllib3 (1.7.1-1ubuntu4.1) trusty-security; urgency=medium * No change rebuild in -security pocket. -- <email address hidden> (Leonidas S. Barbosa) Wed, 10 Oct 2018 16:06:31 -0300
Available diffs
python-urllib3 (1.13.1-2ubuntu0.16.04.2) xenial; urgency=medium
* d/p/07_support_ip_sans.patch: Cherry pick fix to support use of
IP based SAN's in TLS certificates (LP: #1771988).
-- James Page <email address hidden> Mon, 20 Aug 2018 15:54:33 +0100
Available diffs
| Superseded in disco-release |
| Obsolete in cosmic-release |
| Published in bionic-release |
| Deleted in bionic-proposed (Reason: moved to release) |
python-urllib3 (1.22-1) unstable; urgency=medium
* Team upload.
* New upstream release (Closes: #876334)
* d/watch
- Check upstream signature
- Use https
* Bump debhelper compat level to 11
* Standards-Version is 4.1.3 now (no changes needed)
* Add python{3,}-pytest to B-D
* Use pytest for unit tests (same as upstream) and skip timing tests
* Skip test_recent_date test
* Use autopkgtest-pkg-python testsuite instead of hardcoded one
-- Ondřej Nový <email address hidden> Thu, 04 Jan 2018 15:09:14 +0100
Available diffs
- diff from 1.21.1-1 to 1.22-1 (58.5 KiB)
| Superseded in bionic-release |
| Obsolete in artful-release |
| Deleted in artful-proposed (Reason: moved to release) |
python-urllib3 (1.21.1-1) unstable; urgency=medium
* New upstream release. (Closes: #861642)
* debian/control
- Add python-psutil{,3} to Build-Depends.
- Add version constraint for six. (Closes: #857006)
- Bump Standards-Version to 4.0.0 (no changes needed).
* debian/copyright
- Update copyright years.
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh.
* debian/tests/control
- Add autodep8 tests. (Closes: #796717)
-- Daniele Tricoli <email address hidden> Fri, 14 Jul 2017 01:21:44 +0200
Available diffs
- diff from 1.19.1-1 to 1.21.1-1 (78.3 KiB)
| Superseded in artful-release |
| Deleted in artful-proposed (Reason: moved to release) |
| Deleted in zesty-proposed (Reason: Moved to artful-proposed) |
python-urllib3 (1.19.1-1) unstable; urgency=medium
* New upstream release.
* debian/control
- Remove python{,3}-ndg-httpsclient and python{,3}-pyasn1.
- Add python{,3}-cryptography, python{,3}-idna and python-ipaddress.
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh.
-- Daniele Tricoli <email address hidden> Thu, 08 Dec 2016 15:08:04 +0100
Available diffs
- diff from 1.15.1-2 to 1.19.1-1 (84.9 KiB)
- diff from 1.16-1 to 1.19.1-1 (68.6 KiB)
python-urllib3 (1.16-1) unstable; urgency=medium * New upstream release. -- Daniele Tricoli <email address hidden> Sun, 04 Sep 2016 01:21:05 +0200
| Superseded in artful-release |
| Obsolete in zesty-release |
| Obsolete in yakkety-release |
| Deleted in yakkety-proposed (Reason: moved to release) |
python-urllib3 (1.15.1-2) unstable; urgency=medium
* debian/patches/01_do-not-use-embedded-python-six.patch
- Patch urllib3.contrib.appengine and dummyserver tests. (Closes: #825310)
-- Daniele Tricoli <email address hidden> Thu, 26 May 2016 05:11:02 +0200
Available diffs
python-urllib3 (1.13.1-2ubuntu0.16.04.1) xenial; urgency=medium
* d/p/06_revert_square_brackets_httplib.patch: Cherry pick revert of
change to behaviour with httplib which breaks IPv6 square bracket
handling (LP: #1578351).
-- James Page <email address hidden> Tue, 10 May 2016 10:00:32 +0100
Available diffs
python-urllib3 (1.13.1-2ubuntu1) yakkety; urgency=medium
* d/p/06_revert_square_brackets_httplib.patch: Cherry pick revert of
change to behaviour with httplib which breaks IPv6 square bracket
handling (LP: #1578351).
-- James Page <email address hidden> Tue, 10 May 2016 09:41:48 +0100
Available diffs
| Superseded in yakkety-release |
| Published in xenial-release |
| Deleted in xenial-proposed (Reason: moved to release) |
python-urllib3 (1.13.1-2) unstable; urgency=medium
* debian/control
- Remove python-urllib3-whl and python3-wheel B-D. (Closes: #814467)
- Use secure URI for Vcs-Git.
- Bump Standards-Version to 3.9.7 (no changes needed).
- Bump X-Python3-Version to >= 3.2.
* debian/copyright
- Update copyright years.
* debian/python-urllib3-whl.install
- Remove.
* debian/rules
- Remove override_dh_auto_install since it's no longer needed to build the
wheel package.
-- Daniele Tricoli <email address hidden> Fri, 12 Feb 2016 01:35:42 +0100
Available diffs
- diff from 1.13.1-1 to 1.13.1-2 (1.4 KiB)
python-urllib3 (1.13.1-1) unstable; urgency=medium
* New upstream release.
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh.
* debian/patches/05_avoid-embedded-ssl-match-hostname.patch
- Refresh.
-- Daniele Tricoli <email address hidden> Wed, 23 Dec 2015 23:02:05 +0100
Available diffs
- diff from 1.12-1 to 1.13.1-1 (23.3 KiB)
python-urllib3 (1.12-1) unstable; urgency=medium
* New upstream release.
* debian/control
- Update Vcs fields for git migration.
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh.
* debian/patches/06_rely-on-six-to-import-httplib-or-http.client.patch
- Remove since included in this release.
-- Daniele Tricoli <email address hidden> Sun, 11 Oct 2015 03:31:25 +0200
Available diffs
- diff from 1.11-1 to 1.12-1 (16.5 KiB)
python-urllib3 (1.7.1-1ubuntu4) trusty-proposed; urgency=medium * SRU: LP: #1500768. * Backport pull request #385, fixing TLS verification when using a proxy. -- Matthias Klose <email address hidden> Mon, 12 Oct 2015 18:03:36 +0200
Available diffs
| Superseded in xenial-release |
| Obsolete in wily-release |
| Deleted in wily-proposed (Reason: moved to release) |
python-urllib3 (1.11-1) unstable; urgency=medium
* New upstream release.
* debian/control
- Add python{,3}-tornado to Build-Depends.
- Add python-ntlm to python-urllib3's Suggests.
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh.
-- Daniele Tricoli <email address hidden> Mon, 17 Aug 2015 18:51:43 +0200
Available diffs
- diff from 1.10.4-1 to 1.11-1 (25.1 KiB)
python-urllib3 (1.10.4-1) unstable; urgency=medium
* New upstream release.
* debian/watch
- Use pypi.debian.net redirector.
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh.
-- Daniele Tricoli <email address hidden> Sun, 03 May 2015 17:18:55 +0200
Available diffs
- diff from 1.9.1-3 to 1.10.4-1 (39.0 KiB)
python-urllib3 (1.7.1-1ubuntu3) trusty-proposed; urgency=medium * SRU, update python3.4 for trusty. LP: #1348954. * Build using setuptools and build a wheel package. * Don't rely on ssl.PROTOCOL_SSLv3 being defined. -- Matthias Klose <email address hidden> Tue, 17 Mar 2015 20:52:29 +0100
Available diffs
python-urllib3 (1.7.1-1ubuntu0.1) trusty; urgency=medium
* debian/patches/05_backport_proxy_fix.patch: Backport upstream fix 1c30a1f3
from 1.8.3 release. Fixes the issue when a dropped connection makes
further connections ignore the proxy. (LP: #1412545)
-- Diogo Matsubara <email address hidden> Mon, 26 Jan 2015 12:02:13 -0200
Available diffs
| Superseded in wily-release |
| Obsolete in vivid-release |
| Deleted in vivid-proposed (Reason: moved to release) |
python-urllib3 (1.9.1-3) unstable; urgency=medium
[ Stefano Rivera ]
* Replace 05_do-not-use-embedded-ssl-match-hostname.patch with
05_avoid-embedded-ssl-match-hostname.patch. Users may use virtualenv with
cPython << 2.7.9 (or Debian python2.7 2.7.8-7). (Closes: #755106, #763389)
[ Daniele Tricoli ]
* debian/patches/06_do-not-make-SSLv3-mandatory.patch
- Since SSL version 3 is insecure it is supported only if Python
supports it. (Closes: #770246)
-- Daniele Tricoli <email address hidden> Thu, 20 Nov 2014 13:17:59 +0100
Available diffs
- diff from 1.9.1-2 to 1.9.1-3 (1.8 KiB)
python-urllib3 (1.9.1-2) unstable; urgency=medium
* debian/control
- Bump python{,3}-nose to >=1.3.3 to build urllib3 on Wheezy. Thanks to
Nick Phillips for the report. (Closes: #765035)
-- Daniele Tricoli <email address hidden> Tue, 21 Oct 2014 02:59:57 +0200
Available diffs
- diff from 1.8.3-1 to 1.9.1-2 (59.8 KiB)
| Superseded in vivid-release |
| Obsolete in utopic-release |
| Deleted in utopic-proposed (Reason: moved to release) |
python-urllib3 (1.8.3-1) unstable; urgency=medium
* New upstream release (Closes: #754090)
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refresh
* debian/patches/04_relax_nosetests_options.patch
- Refresh
-- Daniele Tricoli <email address hidden> Mon, 07 Jul 2014 16:09:06 +0200
Available diffs
- diff from 1.8.2-1 to 1.8.3-1 (13.3 KiB)
python-urllib3 (1.8.2-1) unstable; urgency=medium
* New upstream release
* debian/clean
- Removed .coverage entry
* debian/control
- Added python3-coverage, python3-mock, python3-nose to Build-Depends
- Bumped python(3)-coverage to (>=3.6)
- Removed python-tornado from Build-Depends since it was used only for
dummyserver
* debian/copyright
- Updated copyright years
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refreshed
* debian/patches/02_require-cert-verification.patch
- Refreshed
* debian/patches/03_no-setuptools.patch
- Superseded by debian/patches/setuptools.patch
* debian/patches/03_force-setuptools.patch
- Renamed from setuptools.patch
- Added description
* debian/patches/05_do-not-use-embedded-ssl-match-hostname.patch
- Do not use embedded copy of ssl.match_hostname
* debian/patches/06_relax-test-requirements.patch
- Relax version of packages needed for testing
* debian/rules
- Enabled tests at build time also for Python 3 using the custom build
plugin of pybuild
- Cleaned .coverage file generated by nose using coverage plugin
- No need to remove dummyserver since it is not installed anymore
-- Daniele Tricoli <email address hidden> Wed, 28 May 2014 19:41:18 +0200
Available diffs
- diff from 1.8-2 to 1.8.2-1 (23.8 KiB)
python-urllib3 (1.8-2) unstable; urgency=medium
* Team upload.
* d/control:
- Fix python-urllib3-whl Depends.
- Fix typo in python-urllib3-whl description.
-- Barry Warsaw <email address hidden> Thu, 22 May 2014 18:19:16 -0400
Available diffs
- diff from 1.7.1-1build1 (in Ubuntu) to 1.8-2 (28.7 KiB)
| Superseded in utopic-release |
| Published in trusty-release |
| Deleted in trusty-proposed (Reason: moved to release) |
python-urllib3 (1.7.1-1build1) trusty; urgency=medium * Rebuild to drop files installed into /usr/share/pyshared. -- Matthias Klose <email address hidden> Sun, 23 Feb 2014 13:53:23 +0000
Available diffs
- diff from 1.7.1-1 (in Debian) to 1.7.1-1build1 (335 bytes)
python-urllib3 (1.7.1-1) unstable; urgency=low
* New upstream release
* Switched to pybuild
* debian/clean
- Switched to debian/clean for cleaning instead of using debian/rules
* debian/compat
- Bumped debhelper compatibility level to 9
* debian/control
- Added python-mock to Build-Depends
- Bumped debhelper B-D to (>= 9)
* debian/copyright
- Removed stanza about mimetools_choose_boundary since not shipped
anymore
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refreshed
* debian/patches/02_require-cert-verification.patch
- Refreshed
* debian/patches/04_relax_nosetests_options.patch
- Refreshed
* debian/patches/05_fix_python3_syntax_error_in_ntlmpool.patch
- Removed since fixed upstream
* debian/patches/06_fix_abuse_of_match_hostname_for_DoS.patch
- Removed since fixed upstream
* debian/watch
- Switched download URL to https
-- Daniele Tricoli <email address hidden> Thu, 17 Oct 2013 13:28:10 +0200
Available diffs
- diff from 1.6-2 to 1.7.1-1 (34.7 KiB)
| Superseded in trusty-release |
| Obsolete in saucy-release |
| Deleted in saucy-proposed (Reason: moved to release) |
python-urllib3 (1.6-2) unstable; urgency=high
* debian/patches/06_fix_abuse_of_match_hostname_for_DoS.patch
- Added upstream patch to fix possible abuse of ssl.match_hostname()
for denial of service using certificates with many wildcards
(CVE-2013-2099) (Closes: #709070) Thanks Henri Salo and Jakub
Wilk for the report
-- Daniele Tricoli <email address hidden> Mon, 20 May 2013 19:34:17 +0200
Available diffs
- diff from 1.6-1 to 1.6-2 (1.0 KiB)
python-urllib3 (1.6-1) unstable; urgency=low
[ Jakub Wilk ]
* Use canonical URIs for Vcs-* fields.
[ Daniele Tricoli ]
* New upstream release
* Upload to unstable (Closes: #707780)
* debian/control
- Added python3-six to Build-Depends field
- Bumped debhelper dependency to 8.1 for build-{arch,indep} support
- Removed python-setuptools from Build-Depends field
* debian/copyright
- Updated copyright years
- Added stanza for urllib3/packages/ordered_dict.py
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refreshed
* debian/patches/02_require-cert-verification.patch
- Refreshed
* debian/patches/03_no-setuptools.patch
- Do not use setuptools
* debian/patches/04_relax_nosetests_options.patch
- Do not use logging-clear-handlers to see all logging output and
disabled cover-min-percentage since it require python-nose (>= 1.3):
this way it will be easier to backport python-urllib3 to Wheezy.
* debian/patches/05_fix_python3_syntax_error_in_ntlmpool.patch
- Fix syntax error 'unicodeescape' codec can't decode bytes in
position 130-132 for Python3
-- Daniele Tricoli <email address hidden> Sat, 11 May 2013 15:15:38 +0200
Available diffs
- diff from 1.5-0ubuntu1 (in Ubuntu) to 1.6-1 (22.6 KiB)
| Superseded in saucy-release |
| Obsolete in raring-release |
| Deleted in raring-proposed (Reason: moved to release) |
python-urllib3 (1.5-0ubuntu1) raring; urgency=low
* New upstream release. Remaining changes:
- 01_do-not-use-embedded-python-six.patch: refreshed
- 02_require-cert-verification.patch: refreshed
- 03-fix-appenginge.patch: removed
-- Barry Warsaw <email address hidden> Thu, 01 Nov 2012 15:31:36 +0100
Available diffs
- diff from 1.3-2ubuntu2 to 1.5-0ubuntu1 (20.3 KiB)
python-urllib3 (1.3-2ubuntu2) quantal; urgency=low * debian/patches/03-fix-appenginge.patch: Backport appengine from requests. -- Chuck Short <email address hidden> Fri, 07 Sep 2012 09:40:00 -0500
Available diffs
- diff from 1.3-2ubuntu1 to 1.3-2ubuntu2 (855 bytes)
| Superseded in quantal-release |
python-urllib3 (1.3-2ubuntu1) quantal; urgency=low
* debian/patches/02_require-cert-verification.patch: verify SSL certificates
by default (LP: #1047054)
-- Jamie Strandboge <email address hidden> Thu, 06 Sep 2012 16:15:29 -0500
Available diffs
python-urllib3 (1.3-2) unstable; urgency=low
* debian/control
- Tightened B-D of python-coverage to >= 3.4 (Closes: #668427)
- Fixed typo in python3-urllib3's ${python3:Depends}
* debian/patches/01_do-not-use-embedded-python-six.patch
- Refreshed
* debian/rules
- Actually remove the embedded python-six from binary packages
- Cleaned .egg-info to build packages twice in a row
-- Daniele Tricoli <email address hidden> Tue, 17 Apr 2012 21:34:49 +0200
| 1 → 60 of 60 results | First • Previous • Next • Last |
