--- - branch: MAIN date: Sat Jun 4 03:58:59 UTC 2011 files: - new: '1.40' old: '1.39' path: pkgsrc/lang/python26/Makefile pathrev: pkgsrc/lang/python26/Makefile@1.40 type: modified - new: '1.2' old: '1.1' path: pkgsrc/lang/python26/dist.mk pathrev: pkgsrc/lang/python26/dist.mk@1.2 type: modified - new: '1.34' old: '1.33' path: pkgsrc/lang/python26/distinfo pathrev: pkgsrc/lang/python26/distinfo@1.34 type: modified - new: '0' old: '1.1' path: pkgsrc/lang/python26/patches/patch-ca pathrev: pkgsrc/lang/python26/patches/patch-ca@0 type: deleted - new: '0' old: '1.1' path: pkgsrc/lang/python26/patches/patch-cb pathrev: pkgsrc/lang/python26/patches/patch-cb@0 type: deleted id: 20110604T035859Z.d585fe67e6911ff6cf152a2b3417229a2b768e15 log: | Update python26 to 2.6.7. (CVE-2011-1521 had been fixed in pkgsrc). What's New in Python 2.6.7? =========================== *Release date: 2011-06-03* *NOTE: Python 2.6 is in security-fix-only mode. No non-security bug fixes are allowed. Python 2.6.7 and beyond will be source only releases.* * No changes since 2.6.7rc2. What's New in Python 2.6.7 rc 2? ================================ *Release date: 2011-05-20* *NOTE: Python 2.6 is in security-fix-only mode. No non-security bug fixes are allowed. Python 2.6.7 and beyond will be source only releases.* Library ------- - Issue #11662: Make urllib and urllib2 ignore redirections if the scheme is not HTTP, HTTPS or FTP (CVE-2011-1521). - Issue #11442: Add a charset parameter to the Content-type in SimpleHTTPServer to avoid XSS attacks. What's New in Python 2.6.7 rc 1? ================================ *Release date: 2011-05-06* Library ------- - Issue #9129: smtpd.py is vulnerable to DoS attacks deriving from missing error handling when accepting a new connection. module: pkgsrc subject: 'CVS commit: pkgsrc/lang/python26' unixtime: '1307159939' user: obache