Skip to main content

Browse the archive

Staging
v0.5.1
https://github.com/python/cpython
09 December 2020, 11:06:31 UTC
Raw File
Tip revision: c0a9afe2ac1820409e6173bd1893ebee2cf50270 authored by Ned Deily on 15 August 2020, 06:43:26 UTC
3.6.12
Tip revision: c0a9afe
3.6.12.rst 
.. bpo: 29778
.. date: 2020-07-03-17-21-37
.. nonce: cR_fGS
.. release date: 2020-08-15
.. section: Security

Ensure :file:`python3.dll` is loaded from correct locations when Python is
embedded (CVE-2020-15523).

..

.. bpo: 41004
.. date: 2020-06-29-16-02-29
.. nonce: ovF0KZ
.. section: Security

CVE-2020-14422: The __hash__() methods of  ipaddress.IPv4Interface and
ipaddress.IPv6Interface incorrectly generated constant hash values of 32 and
128 respectively. This resulted in always causing hash collisions. The fix
uses hash() to generate hash values for the tuple of (address, mask length,
network address).

..

.. bpo: 39603
.. date: 2020-02-12-14-17-39
.. nonce: Gt3RSg
.. section: Security

Prevent http header injection by rejecting control characters in
http.client.putrequest(...).

..

.. bpo: 41288
.. date: 2020-07-13-15-06-35
.. nonce: 8mn5P-
.. section: Library

Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now
UnpicklingError instead of crashing.

..

.. bpo: 39017
.. date: 2020-07-12-22-16-58
.. nonce: x3Cg-9
.. section: Library

Avoid infinite loop when reading specially crafted TAR files using the
tarfile module (CVE-2019-20907).
back to top