-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 01 May 2024 20:39:38 -0400 Source: pypy3 Architecture: source Version: 7.3.11+dfsg-2+deb12u2 Distribution: bookworm Urgency: medium Maintainer: Stefano Rivera <stefanor@debian.org> Changed-By: Stefano Rivera <stefanor@debian.org> Changes: pypy3 (7.3.11+dfsg-2+deb12u2) bookworm; urgency=medium . * Security patches to the standard library: - Apply cPython upstream security fix for CVE-2023-24329: Strip C0 control and space characters in urlsplit. - Apply cPython upstream security fix for CVE-2023-40217: Avoid bypass TLS of handshake protections on closed sockets. - Apply cPython upstream security fix for CVE-2023-6597: tempfile.TemporaryDirectory: fix symlink bug in cleanup. - Apply cPython upstream security fix for CVE-2024-0450: Protect zipfile from "quoted-overlap" zipbomb. Checksums-Sha1: aa12af43823a316f9f9b1b9d959515a640dbf7a7 2416 pypy3_7.3.11+dfsg-2+deb12u2.dsc 67451df586f54e0e0484eedbe833177b4faf34cf 72488 pypy3_7.3.11+dfsg-2+deb12u2.debian.tar.xz 559e5da17ec50778490896a95d1b693139fb13be 9667 pypy3_7.3.11+dfsg-2+deb12u2_source.buildinfo Checksums-Sha256: ddb2b44f2ab311abd11d394f9d827006ac09830807a037fcd9bfd730138fa410 2416 pypy3_7.3.11+dfsg-2+deb12u2.dsc 21430a9e35a5a52a3c12146d4574ac1553ad5ba2990f8c282556985fa5122178 72488 pypy3_7.3.11+dfsg-2+deb12u2.debian.tar.xz b4b52a2b0cf6ef87803e3f4c4ef607309dfb73f03178ffaaecdf048d947d2739 9667 pypy3_7.3.11+dfsg-2+deb12u2_source.buildinfo Files: 957d42a556584b39257dda87f26af2aa 2416 python optional pypy3_7.3.11+dfsg-2+deb12u2.dsc 7343820fa09728e13d9dd4c2f0d730c5 72488 python optional pypy3_7.3.11+dfsg-2+deb12u2.debian.tar.xz f22fdedcb02eed90d83e60c1e1bdcd5e 9667 python optional pypy3_7.3.11+dfsg-2+deb12u2_source.buildinfo -----BEGIN PGP SIGNATURE----- iIoEARYKADIWIQTumtb5BSD6EfafSCRHew2wJjpU2AUCZjLiTxQcc3RlZmFub3JA ZGViaWFuLm9yZwAKCRBHew2wJjpU2DNUAP4iDEuBJyLX31Gq0Ivd4EqSFExG+tR2 D0R6mKSEqYOS8QEA1JWY+HqrI2Kd8bL0oCH8tGvwxSctKZEPhbLYwkDxUQw= =QtdZ -----END PGP SIGNATURE-----