Copied from
ubuntu trusty in
Python 2.7
by Sabin Iacob
Changelog
python2.7 (2.7.13-1~ubuntu14.04.1york0) trusty; urgency=medium
* No-change backport to trusty
python2.7 (2.7.13-1) unstable; urgency=medium
* Python 2.7.13 release.
- Revert a37cc3d926ec (Issue #5322). Closes: #847791.
* Fix one more broken -gdb.py symlink. Closes: #807513.
python2.7 (2.7.13~rc1-1) unstable; urgency=medium
* Python 2.7.13 release candidate 1.
- Issue #5322: Fixed setting __new__ to a PyCFunction inside Python code.
- Issue #28847: dumbdbm no longer writes the index file in when it is not
changed and supports reading read-only files.
- Issue #11145: Fixed miscellaneous issues with C-style formatting of types
with custom __oct__ and __hex__.
- Issue #24469: Fixed memory leak caused by int subclasses without
overridden tp_free (e.g. C-inherited Cython classes).
* Pass CXX when configuring and building. Closes: #846326.
* Add profile for libbluetooth-dev build dependency. Closes: #738520.
python2.7 (2.7.12-7) unstable; urgency=medium
* Update to 20161121 from the 2.7 branch.
- Issue #19398: Extra slash no longer added to sys.path components
in case of empty compile-time PYTHONPATH components.
- Issue #25659: In ctypes, prevent a crash calling the from_buffer() and
from_buffer_copy() methods on abstract classes like Array.
- Issue #28563: Fixed possible DoS and arbitrary code execution when handle
plural form selections in the gettext module. The expression parser now
supports exact syntax supported by GNU gettext.
- Issue #25507: Add back import needed for 2.x encoding warning box.
Add pointer to 'Encoding declaration' in Language Reference.
- Issue #28666: Now test.test_support.rmtree is able to remove unwritable
or unreadable directories.
- Issue #23839: Various caches now are cleared before running every
test file.
- Issue #26359: Rename --with-optimiations to --enable-optimizations.
python2.7 (2.7.12-5) unstable; urgency=medium
* Update to 20161104 from the 2.7 branch.
- Issue #28387: Fixed possible crash in _io.TextIOWrapper deallocator when
the garbage collector is invoked in other thread.
* Disable some lib2to3 tests relying on the saved pickled grammar files.
python2.7 (2.7.12-4) unstable; urgency=medium
* Update to 20161103 from the 2.7 branch.
- Issue #21720: Improve exception message when the type of fromlist is
unicode. fromlist parameter of __import__() only accepts str in Python 2
and this will help to identify the problem especially when the
unicode_literals future import is used.
- Issue #26906: Resolving special methods of uninitialized type now causes
implicit initialization of the type instead of a fail.
- Issue #18287: PyType_Ready() now checks that tp_name is not NULL.
- Issue #24098: Fixed possible crash when AST is changed in process of
compiling it.
- Issue #28350: String constants with null character no longer interned.
- Issue #27942: String constants now interned recursively in tuples and
frozensets.
- Issue #15578: Correctly incref the parent module while importing.
- Issue #26307: The profile-opt build now applies PGO to the built-in
modules.
- Issue #26020: set literal evaluation order did not match documented
behaviour.
- Issue #28449: tarfile.open() with mode "r" or "r:" now tries to open a
tar file with compression before trying to open it without compression.
Otherwise it had 50% chance failed with ignore_zeros=True.
- Issue #25464: Fixed HList.header_exists() in Tix module by adding
a workaround to Tix library bug.
- Issue #28488: shutil.make_archive() no longer adds entry "./" to ZIP
archive.
- Issue #28480: Fix error building _sqlite3 module when multithreading is
disabled.
- Issue #26293: Fixed writing ZIP files that starts not from the start of
the file. Offsets in ZIP file now are relative to the start of the
archive in conforming to the specification.
- Fix possible integer overflows and crashes in the mmap module with
unusual usage patterns.
- Issue #27897: Fixed possible crash in
sqlite3.Connection.create_collation() if pass invalid string-like object
as a name.
- Issue #1703178: Fix the ability to pass the --link-objects option to the
distutils build_ext command.
- Issue #28253: Fixed calendar functions for extreme months: 0001-01
and 9999-12.
Methods itermonthdays() and itermonthdays2() are reimplemented so
that they don't call itermonthdates() which can cause datetime.date
under/overflow.
- Issue #27963: Fixed possible null pointer dereference in
ctypes.set_conversion_mode().
- Issue #28284: Strengthen resistance of ``_json.encode_basestring_ascii()``
to integer overflow.
- Issue #27611: Fixed support of default root window in the Tix module.
- Issue #24363: When parsing HTTP header fields, if an invalid line is
encountered, skip it and continue parsing. Previously, no more header
fields were parsed, which could lead to fields for HTTP framing like
Content-Length and Transfer-Encoding being overlooked.
- Issue #27599: Fixed buffer overrun in binascii.b2a_qp() and
binascii.a2b_qp().
- Issue #25969: Update the lib2to3 grammar to handle the unpacking
generalizations added in 3.5.
- Issue #24594: Validates persist parameter when opening MSI database
- Issue #27570: Avoid zero-length memcpy() etc calls with null source
pointers in the "ctypes" and "array" modules.
- Issue #22450: urllib now includes an "Accept: */*" header among the
default headers. This makes the results of REST API requests more
consistent and predictable especially when proxy servers are involved.
- lib2to3.pgen3.driver.load_grammar() now creates a stable cache file
between runs given the same Grammar.txt input regardless of the hash
randomization setting.
- Issue #27691: Fix ssl module's parsing of GEN_RID subject alternative
name fields in X.509 certs.
- Issue #27850: Remove 3DES from ssl module's default cipher list to
counter measure sweet32 attack (CVE-2016-2183).
- Issue #27766: Add ChaCha20 Poly1305 to ssl module's default ciper list.
(Required OpenSSL 1.1.0 or LibreSSL).
- Issue #26470: Port ssl and hashlib module to OpenSSL 1.1.0.
Closes: #835793.
- Issue #27944: Fix some memory-corruption bugs in the log reading code
of the _hotshot module.
- Issue #27934: Use ``float.__repr__`` instead of plain ``repr`` when JSON-
encoding an instance of a float subclass.
- Issue #21201: Improves readability of multiprocessing error message.
- Issue #15308: Add 'interrupt execution' (^C) to Shell menu.
- Issue #27922: Stop IDLE tests from 'flashing' gui widgets on the screen.
- Issue #17642: add larger font sizes for classroom projection.
- Add version to title of IDLE help window.
- Issue #25564: In section on IDLE -- console differences, mention that
using exec means that __builtins__ is defined for each statement.
- Issue #28513: Documented command-line interface of zipfile.
- Issue #28258: Fixed build with Estonian locale.
- Issue #26661: setup.py now detects system libffi with multiarch wrapper.
- Issue #15819: The Include directory in the build tree is already
searched; drop unused code trying to add it again.
- Issue #27566: Fix clean target in freeze makefile.
- Issue #27983: Cause lack of llvm-profdata tool when using clang as
required for PGO linking to be a configure time error rather than
make time when --with-optimizations is enabled. Also improve our
ability to find the llvm-profdata tool on MacOS and some Linuxes.
- Issue #26359: Add the --with-optimizations configure flag.
- Issue #27952: Get Tools/scripts/fixcid.py working with the current "re"
module, avoid invalid Python backslash escapes, and fix a bug parsing
escaped C quote signs.
python2.7 (2.7.12-3) unstable; urgency=medium
* Update to 20160901 from the 2.7 branch.
- Issue #27870: A left shift of zero by a large integer no longer attempts
to allocate large amounts of memory.
- Issue #25604: Fix a minor bug in integer true division; this bug could
potentially have caused off-by-one-ulp results on platforms with
unreliable ldexp implementations.
- Issue #27861: Fixed a crash in sqlite3.Connection.cursor() when a factory
creates not a cursor.
- Issue #10513: Fix a regression in Connection.commit(). Statements should
not be reset after a commit.
- Issue #2466: posixpath.ismount now correctly recognizes mount points which
the user does not have permission to access.
- Issue #27783: Fix possible usage of uninitialized memory in
operator.methodcaller.
- Issue #27774: Fix possible Py_DECREF on unowned object in _sre.
- Issue #27760: Fix possible integer overflow in binascii.b2a_qp.
- In the curses module, raise an error if window.getstr() or window.instr()
is passed a negative value.
- Issue #27758: Fix possible integer overflow in the _csv module for large
record lengths.
- Issue #23369: Fixed possible integer overflow in
_json.encode_basestring_ascii.
- Issue #27714: text_textview and test_autocomplete now pass when re-run
in the same process. This occurs when test_idle fails when run with the
-w option but without -jn. Fix warning from test_config.
- Issue #27452: add line counter and crc to IDLE configHandler test dump.
python2.7 (2.7.12-2) unstable; urgency=medium
* Update to 20160804 from the 2.7 branch.
- Issue #27473: Fixed possible integer overflow in str, unicode and
bytearray concatenations and repetitions.
- Issue #27507: Add integer overflow check in bytearray.extend().
- Issue #27581: Don't rely on wrapping for overflow check in
PySequence_Tuple().
- Issue #23908: os functions, open() and the io.FileIO constructor now
reject unicode paths with embedded null character on Windows instead of
silently truncating them.
- Issue #27514: Make having too many statically nested blocks a SyntaxError
instead of SystemError.
- Issue #27568: Prevent HTTPoxy attack (CVE-2016-1000110). Ignore the
HTTP_PROXY variable when REQUEST_METHOD environment is set, which
indicates that the script is in CGI mode.
- Issue #27130: In the "zlib" module, fix handling of large buffers
(typically 2 or 4 GiB). Previously, inputs were limited to 2 GiB, and
compression and decompression operations did not properly handle results
of 2 or 4 GiB.
- Issue #23804: Fix SSL zero-length recv() calls to not block and not raise
an error about unclean EOF.
- Issue #27466: Change time format returned by http.cookie.time2netscape,
confirming the netscape cookie format and making it consistent with
documentation.
- Issue #22115: Fixed tracing Tkinter variables: trace_vdelete() with wrong
mode no longer break tracing, trace_vinfo() now always returns a list of
pairs of strings.
- Issue #27079: Fixed curses.ascii functions isblank(), iscntrl() and
ispunct().
- Issue #22636: Avoid shell injection problems with
ctypes.util.find_library().
- Issue #27330: Fixed possible leaks in the ctypes module.
- Issue #27238: Got rid of bare excepts in the turtle module.
- Issue #26386: Fixed ttk.TreeView selection operations with item id's
containing spaces.
- Issue #25455: Fixed a crash in repr of cElementTree.Element with
recursive tag.
- Issue #27365: Allow non-ascii chars in IDLE NEWS.txt, for contributor
names.
- Issue #27245: IDLE: Cleanly delete custom themes and key bindings.
Previously, when IDLE was started from a console or by import, a cascade
of warnings was emitted.
- Issue #16484: Change the default PYTHONDOCS URL to "https:", and fix the
resulting links to use lowercase.
- Issue #27369: In test_pyexpat, avoid testing an error message detail that
changed in Expat 2.2.0.
* Fix issue 27239, idlelib: macos _tk_type shall always be "other".
Closes: #830686.
* Ignore the winreg module for the set of minimal modules. Closes: #830573.
python2.7 (2.7.12-1) unstable; urgency=medium
* Python 2.7.12 release.
python2.7 (2.7.12~rc1-2) unstable; urgency=medium
* Extend debian/copyright to the files shipped in the wheel files.
python2.7 (2.7.12~rc1-1) unstable; urgency=medium
* Python 2.7.12 release candidate 1.
- Issue #20041: Fixed TypeError when frame.f_trace is set to None.
- Issue #25702: A --with-lto configure option has been added that will
enable link time optimizations at build time during a make profile-opt.
Some compilers and toolchains are known to not produce stable code when
using LTO, be sure to test things thoroughly before relying on it.
It can provide a few % speed up over profile-opt alone.
- Issue #26556: Update expat to 2.1.1, fixes CVE-2015-1283.
- Fix TLS stripping vulnerability in smptlib, CVE-2016-0772.
- Issue #7356: ctypes.util: Make parsing of ldconfig output independent of
the locale.
- Issue #25738: Stop BaseHTTPServer.BaseHTTPRequestHandler.send_error()
from sending a message body for 205 Reset Content. Also, don't send the
Content-Type header field in responses that don't have a body.
- Issue #21313: Fix the "platform" module to tolerate when sys.version
contains truncated build information.
- Issue #27211: Fix possible memory corruption in io.IOBase.readline().
- Issue #5124: Paste with text selected now replaces the selection on X11.
This matches how paste works on Windows, Mac, most modern Linux apps,
and ttk widgets.
- Issue #24759: Make clear in idlelib.idle_test.__init__ that the directory
is a private implementation of test.test_idle and tool for maintainers.
- Issue #21916: Added tests for the turtle module.
- Issue #27229: Fix the cross-compiling pgen rule for in-tree builds.
- Issue #17500, and https://github.com/python/pythondotorg/issues/945: Remove
unused and outdated icons.
python2.7 (2.7.11-11) unstable; urgency=medium
* Update to 20160602 from the 2.7 branch.
- Issue #26168: Fixed possible refleaks in failing Py_BuildValue() with
the "N" format unit.
- Issue #27114: Fix SSLContext._load_windows_store_certs fails with
PermissionError.
- Issue #26673: When tk reports font size as 0, change to size 10.
Such fonts on Linux prevented the configuration dialog from opening.
- Issue #27044: Add ConfigDialog.remove_var_callbacks to stop memory leaks.
- In the 'IDLE-console differences' section of the IDLE doc, clarify
how running with IDLE affects sys.modules and the standard streams.
- Issue #25507: Fix incorrect change in IOBinding that prevented printing.
Change also prevented saving shell window with non-ascii characters.
Augment IOBinding htest to include all major IOBinding functions.
- Issue #25905: Revert unwanted conversion of ' to ’ RIGHT SINGLE QUOTATION
MARK in README.txt and open this and NEWS.txt with 'ascii'.
Re-encode CREDITS.txt to utf-8 and open it with 'utf-8'.
* Rebuild to pick up the GNU triplet change on i386 archs. Closes: #826128.
python2.7 (2.7.11-10) unstable; urgency=medium
* Update to 20160518 from the 2.7 branch.
- Issue #27039: Fixed bytearray.remove() for values greater than 127.
- Issue #14132: Fix urllib.request redirect handling when the target only
has a query string.
- Removed the requirements for the ctypes and modulefinder modules to be
compatible with earlier Python versions.
- Issue #22274: In the subprocess module, allow stderr to be redirected to
stdout even when stdout is not redirected.
- Issue #12045: Avoid duplicate execution of command in
ctypes.util._get_soname().
- Issue #26960: Backported #16270 from Python 3 to Python 2, to prevent
urllib from hanging when retrieving certain FTP files.
python2.7 (2.7.11-9) unstable; urgency=medium
* Update to 20160509 from the 2.7 branch.
- Issue #25745: Fixed leaking a userptr in curses panel destructor.
- Issue #17765: weakref.ref() no longer silently ignores keyword arguments.
- Issue #26873: xmlrpclib now raises ResponseError on unsupported type tags
instead of silently return incorrect result.
- Issue #24114: Fix an uninitialized variable in `ctypes.util`.
- Issue #26864: In urllib, change the proxy bypass host checking against
no_proxy to be case-insensitive, and to not match unrelated host names
that happen to have a bypassed hostname as a suffix.
- Issue #26804: urllib will prefer lower_case proxy environment variables
over UPPER_CASE or Mixed_Case ones.
- Issue #26837: assertSequenceEqual() now correctly outputs non-stringified
differing items. This affects assertListEqual() and assertTupleEqual().
- Issue #26822: itemgetter, attrgetter and methodcaller objects no longer
silently ignore keyword arguments.
- Issue #26657: Fix directory traversal vulnerability with SimpleHTTPServer
on Windows. This fixes a regression that was introduced in 2.7.7.
- Issue #26736: Used HTTPS for external links in the documentation if
possible.
- Issue #22359: Avoid incorrect recursive $(MAKE), and disable the rules for
running pgen when cross-compiling.
- Issue #26799: Fix python-gdb.py: don't get C types once when the Python
code is loaded, but get C types on demand. The C types can change if
python-gdb.py is loaded before the Python executable.
* Fix issue #26673, runtime error in idle3. LP: #1578927.
python2.7 (2.7.11-8) unstable; urgency=medium
* Update to 20160417 from the 2.7 branch.
- Issue #4806: Avoid masking the original TypeError exception when using
star (*) unpacking and the exception was raised from a generator.
- Issue #26659: Make the builtin slice type support cycle collection.
- Issue #26718: super.__init__ no longer leaks memory if called multiple
times. NOTE: A direct call of super.__init__ is not endorsed!
- Issue #13410: Fixed a bug in PyUnicode_Format where it failed to properly
ignore errors from a __int__() method.
- Issue #19377: Add .svg to mimetypes.types_map.
- Issue #13952: Add .csv to mimetypes.types_map.
- Issue #16329: Add .webm to mimetypes.types_map.
- Issue #23735: Handle terminal resizing with Readline 6.3+ by installing
our own SIGWINCH handler.
- Issue #6953: Rework the Readline module documentation to group related
functions together, and add more details such as what underlying Readline
functions and variables are accessed.
* Fix gdb auto-load symlink for the python2.7 binary. LP: #1571198.
python2.7 (2.7.11-7) unstable; urgency=medium
* Update to 20160330 from the 2.7 branch.
python2.7 (2.7.11-6) unstable; urgency=medium
* Update to 20160323 from the 2.7 branch.
* Always build _math.o with -fPIC.
python2.7 (2.7.11-5) unstable; urgency=medium
* Update to 20160319, taken from the 2.7 release branch.
* Update symbols files.
* Don't run test_signal on alpha, hanging on the buildd.
python2.7 (2.7.11-4) unstable; urgency=medium
* Update to 20160222, taken from the 2.7 release branch.
python2.7 (2.7.11-3) unstable; urgency=medium
* Revert patches concerning issue #22995.
python2.7 (2.7.11-2) unstable; urgency=medium
* Disable LTO on ppc64, ppc64el and s390x.
* Don't run the test_signal tests on alpha.
python2.7 (2.7.11-1) unstable; urgency=medium
* Python 2.7.11 release.
* Don't run the test_cpickle test, causes other tests to fail.
See issue 25698.
* Fix building architecture independent packages only. Closes: #806868.
* Don't ship menu files anymore, just desktop files.
* d/p/fix-sslv3-test.diff: properly handle Ubuntu's openssl having OP_NO_SSLv3
forced on by default (Marc Deslauriers).
* Update symbols files.
python2.7 (2.7.10-5) unstable; urgency=medium
* Update to 20151010, taken from the 2.7 release branch.
* Adjust setting DH_COMPAT for dh_movefiles with updated debhelper supporting
globbing of arguments. Closes: #800301.
* pydoc: use the pager command if available. Closes: #799555.
python2.7 (2.7.10-4) unstable; urgency=medium
* Remove byte-code for _sysconfigdata_d.py in /usr/lib/python2.7.
Closes: #793528.
* Make derivatives builds the same as the parent distro. Closes: #797667.
python2.7 (2.7.10-3) unstable; urgency=medium
* Revert issue #24134 changes, taken from the branch.
* Add hint to install the idle package when trying to run the turtle demo.
Closes: #788621.
python2.7 (2.7.10-2) unstable; urgency=medium
* Cherry-pick some changes from the 2.7 branch:
- Issue #24264: Fixed buffer overflow in the imageop module.
- Issue #24115: Update uses of PyObject_IsTrue(), PyObject_Not(),
PyObject_IsInstance(), PyObject_RichCompareBool() and _PyDict_Contains()
to check for and handle errors correctly.
- Issue #22095: Fixed HTTPConnection.set_tunnel with default port. The port
value in the host header was set to "None".
- Issue #4753, backport computed gotos.
* Configure --with-computed-gotos.
* Make the build reproducible (Jérémy Bobbio). Closes: #786978.
- Pass time of latest debian/changelog entry to sphinx via SPHINXOPTS.
- Do not store a timestamps when compressing devhelp.
* Pass DATE and TIME macros matching the current debian/changelog entry
when building getbuildinfo.o.
* Don't run the test_io test on sparc.
python2.7 (2.7.10-1) unstable; urgency=medium
* Python 2.7.10 release.
python2.7 (2.7.10~rc1-1) unstable; urgency=medium
* Python 2.7.10 release candidate 1.
* Re-enable running the tests, re-enable the pgo/lto build.
python2.7 (2.7.9-5) unstable; urgency=medium
* Update to 20150507, taken from the 2.7 release branch.
- Issue #24134: assertRaises() and assertRaisesRegexp() checks are not
longer successful if the callable is None.
- Issues #24099, #24100, and #24101: Fix free-after-use bug in heapq's
siftup and siftdown functions.
- Backport collections.deque fixes from Python 3.5. Prevents reentrant
badness during deletion by deferring the decref until the container has
been restored to a consistent state.
- Issue #24125: Saved error's line and column numbers when an error
occured. Fixes python-docutils. Closes: #784270.
- Issue #23842, SystemError in os.minor, os.major. Closes: #782081.
python2.7 (2.7.9-4) unstable; urgency=medium
* Fix installation of the optimized interpreter. Closes: #766877.
python2.7 (2.7.9-3) unstable; urgency=medium
* Update to 20150429, taken from the 2.7 release branch.
- Issue #23629: Fix the default __sizeof__ implementation for
variable-sized objects.
- Issue #21526: Tkinter now supports new boolean type in Tcl 8.5.
- Issue #23838: linecache now clears the cache and returns an empty
result on MemoryError.
- Issue #23742: ntpath.expandvars() no longer loses unbalanced single
quotes.
- Issue #21802: The reader in BufferedRWPair now is closed even when
closing writer failed in BufferedRWPair.close().
- Issue #23671: string.Template now allows to specify the "self" parameter
as keyword argument. string.Formatter now allows to specify the "self"
and the "format_string" parameters as keyword arguments.
- Issue #21560: An attempt to write a data of wrong type no longer cause
GzipFile corruption.
- Issue #23647: Increase imaplib's MAXLINE to accommodate modern mailbox
sizes.
- Issue #23539: If body is None, http.client.HTTPConnection.request now
sets Content-Length to 0 for PUT, POST, and PATCH headers to avoid
411 errors from some web servers.
- Issue #23136: _strptime now uniformly handles all days in week 0,
including Dec 30 of previous year.
- Issue #23138: Fixed parsing cookies with absent keys or values in
cookiejar.
- Issue #23051: multiprocessing.Pool methods imap() and imap_unordered()
now handle exceptions raised by an iterator.
- Issue #22928: Disabled HTTP header injections in httplib.
- Issue #23615: Module tarfile now can be reloaded with imp.reload().
- Issue #23799: Added test.test_support.start_threads() for running and
cleaning up multiple threads.
- Issue #22390: test.regrtest now emits a warning if temporary files or
directories are left after running a test.
- Issue #23583: Added tests for standard IO streams in IDLE.
- Issue #23583: Fixed writing unicode to standard output stream in IDLE.
- Issue #22853: Fixed a deadlock when use multiprocessing.Queue at import
time.
- Issue #23476: In the ssl module, enable OpenSSL's
X509_V_FLAG_TRUSTED_FIRST flag on certificate stores when it is available.
- Issue #23576: Avoid stalling in SSL reads when EOF has been reached
in the SSL layer but the underlying connection hasn't been closed.
- Issue #23504: Added an __all__ to the types module.
- Issue #23367: Fix possible overflows in the unicodedata module.
- Issue #23055: Fixed a buffer overflow in PyUnicode_FromFormatV.
- Issue #23048: Fix jumping out of an infinite while loop in the pdb.
- Issue #23458: On POSIX, the file descriptor kept open by os.urandom() is
now set to non inheritable.
- Issue #22113: struct.pack_into() now supports new buffer protocol (in
particular accepts writable memoryview).
- Issues #814253, #9179: Warnings now are raised when group references and
conditional group references are used in lookbehind assertions in regular
expressions.
- Issue #23215: Multibyte codecs with custom error handlers that ignores
errors consumed too much memory and raised SystemError or MemoryError.
- Issue #5700: io.FileIO() called flush() after closing the file.
flush() was not called in close() if closefd=False.
- Issue #21548: Fix pydoc.synopsis() and pydoc.apropos() on modules with
empty docstrings.
- Issue #22885: Fixed arbitrary code execution vulnerability in the dumbdbm
module.
- Issue #23481: Remove RC4 from the SSL module's default cipher list.
- Issue #21849: Fixed xmlrpclib serialization of non-ASCII unicode strings
in the multiprocessing module.
- Issue #21840: Fixed expanding unicode variables of form $var in
posixpath.expandvars(). Fixed all os.path implementations on
unicode-disabled builds.
- Issue #23363: Fix possible overflow in itertools.permutations.
- Issue #23364: Fix possible overflow in itertools.product.
- Issue #23365: Fixed possible integer overflow in
itertools.combinations_with_replacement.
- Issue #23366: Fixed possible integer overflow in itertools.combinations.
- Issue #23191: fnmatch functions that use caching are now threadsafe.
- Issue #18518: timeit now rejects statements which can't be compiled
outside a function or a loop (e.g. "return" or "break").
- Issue #19996: Make :mod:`httplib` ignore headers with no name rather than
assuming the body has started.
- Issue #20188: Support Application-Layer Protocol Negotiation (ALPN) in the
ssl module.
- Issue #23248: Update ssl error codes from latest OpenSSL git master.
- Issue #23098: 64-bit dev_t is now supported in the os module.
- Issue #23063: In the disutils' check command, fix parsing of reST with
code or code-block directives.
- Issue #21356: Make ssl.RAND_egd() optional to support LibreSSL. The
availability of the function is checked during the compilation.
- Backport the context argument to ftplib.FTP_TLS.
- Issue #23111: Maximize compatibility in protocol versions of
ftplib.FTP_TLS.
- Issue #23112: Fix SimpleHTTPServer to correctly carry the query string
and fragment when it redirects to add a trailing slash.
- Issue #22585: On OpenBSD 5.6 and newer, os.urandom() now calls
getentropy(), instead of reading /dev/urandom, to get pseudo-random bytes.
- Issue #23093: In the io, module allow more operations to work on detached
streams.
- Issue #23071: Added missing names to codecs.__all__.
- Issue #23016: A warning no longer produces an AttributeError when
sys.stderr is None.
- Issue #21032. Fixed socket leak if HTTPConnection.getresponse() fails.
Original patch by Martin Panter.
- Issue #22609: Constructors and update methods of mapping classes in the
collections module now accept the self keyword argument.
- Issue #23006: Improve the documentation and indexing of dict.__missing__.
Add an entry in the language datamodel special methods section.
Revise and index its discussion in the stdtypes mapping/dict section.
Backport the code example from 3.4.
- Issue #21514: The documentation of the json module now refers to new
JSON RFC 7159 instead of obsoleted RFC 4627.
- Issue #6639: Module-level turtle functions no longer raise TclError after
closing the window.
- Issue #22314: pydoc now works when the LINES environment variable is set.
- Issue #18905: "pydoc -p 0" now outputs actually used port.
- Issue #23345: Prevent test_ssl failures with large OpenSSL patch level
values (like 0.9.8zc).
- Issue #23392: Added tests for marshal C API that works with FILE*.
- Issue #18982: Add tests for CLI of the calendar module.
- Issue #19949: The test_xpickle test now tests compatibility with installed
Python 2.7 and reports skipped tests.
- Issue #11578: Backported test for the timeit module.
- Issue #22943: bsddb tests are locale independend now.
- Issue #20577: Configuration of the max line length for the FormatParagraph
extension has been moved from the General tab of the Idle preferences
dialog to the FormatParagraph tab of the Config Extensions dialog.
- Issue #16893: Update Idle doc chapter to match current Idle and add new
information.
- Issue #23180: Rename IDLE "Windows" menu item to "Window".
- Issue #15506: Use standard PKG_PROG_PKG_CONFIG autoconf macro in the
configure script.
- Issue #22079: PyType_Ready() now checks that statically allocated type has
no dynamically allocated bases.
* Re-apply the fix for issue #22079. This is now a warning instead of an
error. LP: #1426294.
* Fix issue #23842, SystemError in os.minor, os.major. LP: #1435242.
* When using GCC versions older than 4.9 for extension builds, automagically
mangle -fstack-protector-strong to -fstack-protector.
* debian/tests: Use init system agnostic "service" command instead of
upstart specific "stop". Also drop unnecessary "status" call right after
stopping apport.
* Refresh patches.
python2.7 (2.7.9-2) unstable; urgency=medium
* python2.7-minimal: Make Pre-Depends mangling more robust. Closes: #779294.
* python2.7-doc: Depend on libjs-underscore. LP: #1424538.
* Remove LTO sections from the static libraries. Closes: #698395.
python2.7 (2.7.9-1) unstable; urgency=medium
* Python 2.7.9 release.
python2.7 (2.7.9~rc1-2) unstable; urgency=medium
* Update to 20141209, taken from the 2.7 release repository.
- Issue #22959: Remove the *check_hostname* parameter of
httplib.HTTPSConnection. The *context* parameter should be used instead.
- Issue #16043: Add a default limit for the amount of data
xmlrpclib.gzip_decode will return. This resolves CVE-2013-1753.
Closes: #742929.
- Issue #16042: CVE-2013-1752: smtplib: Limit amount of data read by
limiting the call to readline(). Closes: #742929.
- Issue #16041: In poplib, limit maximum line length read from the server
to prevent CVE-2013-1752. Closes: #742929.
- Issue #22960: Add a context argument to xmlrpclib.ServerProxy.
- Issue #22935: Allow the ssl module to be compiled if openssl
doesn't support SSL 3.
* Add locales to autopkg test dependencies as in 3.4.
* Remove Demo/scripts/newslist.* from the examples package, not
distributable, will get removed in 2.7.9~rc2 sources. See issue #12987.
* Let ensurepip always use a temporary directory for installations.
python2.7 (2.7.9~rc1-1) unstable; urgency=medium
* Python 2.7.9 release candidate 1.
- Testsuite updates.
- Issue #16056: Rename test methods to avoid conflict.
- Issue #20351: Add examples for csv.DictReader and csv.DictWriter.
- PEP 476: verify certificates by default (#22417).
- Give urllib.urlopen a context parameter (closes #22927).
- Allow hostname to be passed to SSLContext even if OpenSSL doesn't
support SNI (closes #22921).
- Allow passing cert/ssl information to urllib2.urlopen and
httplib.HTTPSConnection (backport of issues #9003 and #22366).
* Let libpython2.7-stdlib break python-urllib3 (<< 1.9.1-3). Closes: #770157.
* Ignore the test_threading_local test failure in the Debian CI environment.
Succeeds even there when repeated.
* Don't pass default compiler search directories in the pkgconfig file.
Closes: #770935.
python2.7 (2.7.8-12) unstable; urgency=medium
* Update to 20141118, taken from the 2.7 branch.
- Issue #12728: Different Unicode characters having the same uppercase
but different lowercase are now matched in case-insensitive regular
expressions.
- Issue #22821: Fixed fcntl() with integer argument on 64-bit big-endian
platforms.
- Issues #814253, #9179: Group references and conditional group references
now work in lookbehind assertions in regular expressions.
- Issue #22769: Fixed ttk.Treeview.tag_has() when called without arguments.
- Issue #22787: Allow the keyfile argument of SSLContext.load_cert_chain
to be None.
- Issue #22775: Fixed unpickling of Cookie.SimpleCookie with protocol 2.
- Issue #22776: Brought excluded code into the scope of a try block in
SysLogHandler.emit().
- Issue #17381: Fixed ranges handling in case-insensitive regular
expressions.
- Issue #19329: Optimized compiling charsets in regular expressions.
- Issue #22410: Module level functions in the re module now cache compiled
locale-dependent regular expressions taking into account the locale.
- Issue #8876: distutils now falls back to copying files when hard linking
doesn't work. This allows use with special filesystems such as
VirtualBox shared folders.
- Issue #22193: Fixed integer overflow error in sys.getsizeof().
* Backport the ensurepip patch from 3.4.
* Disable ensurepip in Debian, at least for the upcoming release.
* Fix maintainer scripts for byte-code removal. Closes: #769078.
* Allow building and testing without SSLv3 support (Kurt Roeckx).
Closes: #768611.
* Let distutils.sysconfig.get_python_inc() honor the "prefix" argument.
Closes: #769720.
python2.7 (2.7.8-11) unstable; urgency=medium
* Update to 20141018, taken from the 2.7 branch.
- Issue #9351: Defaults set with set_defaults on an argparse subparser
are no longer ignored when also set on the parent parser.
- Issue #20421: Add a .version() method to SSL sockets exposing the actual
protocol version in use.
- Issue #22435: Fix a file descriptor leak when SocketServer bind fails.
- Issue #13664: GzipFile now supports non-ascii Unicode filenames.
- Issue #13096: Fixed segfault in CTypes POINTER handling of large
values.
- Issue #11694: Raise ConversionError in xdrlib as documented.
- Issue #10712: 2to3 has a new "asserts" fixer that replaces deprecated names
of unittest methods (e.g. failUnlessEqual -> assertEqual).
* Pass -ffat-lto-objects for LTO enabled builds with GCC 4.9.
python2.7 (2.7.8-10) unstable; urgency=medium
* Update to 20141007, taken from the 2.7 branch.
python2.7 (2.7.8-9) unstable; urgency=medium
* Fix refcounting error in the fix for issue #22523. Closes: #762010.
python2.7 (2.7.8-8) unstable; urgency=medium
* Update to 20141002, taken from the 2.7 branch.
* Refresh patches.
* Apply proposed patch for issue #22523. Closes: #762010.
python2.7 (2.7.8-7) unstable; urgency=medium
* Update to 20140909, taken from the 2.7 branch.
* debian/tests/testsuite{,-dbg}: Several tests fail with configured proxy
and disabled network test resources. Explicitly unset proxy variables.
See issue #22371.
python2.7 (2.7.8-6) unstable; urgency=medium
* distuils: For extension builds, always pass BASECFLAGS.
python2.7 (2.7.8-5) unstable; urgency=medium
* Build-depend on dpkg-dev (>= 1.17.11).
python2.7 (2.7.8-4) unstable; urgency=medium
* distutils: For extension builds pass the CPPFLAGS, CFLAGS, LDFLAGS
used for the python build when these flags cannot be found in the
environment.
* Don't use the system python during the build.
* Build using autotools-dev. Closes: #756772.
* Pass AR and RANLIB for lto enabled builds.
python2.7 (2.7.8-3) unstable; urgency=medium
* Call dpkg -L in the maintainer scripts with an architecture qualifier
for M-A: same packages. Closes: #736385.
* Apply the plat-linux2_mips patch for mips64 and mips64el. Closes: #755578.
python2.7 (2.7.8-2) unstable; urgency=medium
* Revert the backport of issue #1856 (avoid daemon thread problems
at shutdown). Issue #21963. Apparently ceph has issues with it.
Closes: #754341.
python2.7 (2.7.8-1) unstable; urgency=medium
* Python 2.7.8 release.
python2.7 (2.7.7-2) unstable; urgency=medium
* Re-enable the test_pydoc, test_tools, test_subprocess and test_uuid
autopkg tests.
* In the autopkg tests, make $ADTTMP accessible to the su user.
python2.7 (2.7.7-1) unstable; urgency=medium
* Python 2.7.7 release.
* Refresh patches.
* In the autopkg tests, set HOME to the temporary home directory after
the su call.
* Expect test failures in the distutils autopkg tests.
* Disable the test_solaris_enable_shared test.
python2.7 (2.7.7~rc1-1) unstable; urgency=medium
* Python 2.7.7 release candidate 1.
* Run the testsuite in a temporary home directory.
-- Jonathon Fernyhough <email address hidden> Mon, 19 Dec 2016 11:14:06 +0000