-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 01 May 2024 20:39:38 -0400
Source: pypy3
Architecture: source
Version: 7.3.11+dfsg-2+deb12u2
Distribution: bookworm
Urgency: medium
Maintainer: Stefano Rivera <stefanor@debian.org>
Changed-By: Stefano Rivera <stefanor@debian.org>
Changes:
pypy3 (7.3.11+dfsg-2+deb12u2) bookworm; urgency=medium
.
* Security patches to the standard library:
- Apply cPython upstream security fix for CVE-2023-24329:
Strip C0 control and space characters in urlsplit.
- Apply cPython upstream security fix for CVE-2023-40217:
Avoid bypass TLS of handshake protections on closed sockets.
- Apply cPython upstream security fix for CVE-2023-6597:
tempfile.TemporaryDirectory: fix symlink bug in cleanup.
- Apply cPython upstream security fix for CVE-2024-0450:
Protect zipfile from "quoted-overlap" zipbomb.
Checksums-Sha1:
aa12af43823a316f9f9b1b9d959515a640dbf7a7 2416 pypy3_7.3.11+dfsg-2+deb12u2.dsc
67451df586f54e0e0484eedbe833177b4faf34cf 72488 pypy3_7.3.11+dfsg-2+deb12u2.debian.tar.xz
559e5da17ec50778490896a95d1b693139fb13be 9667 pypy3_7.3.11+dfsg-2+deb12u2_source.buildinfo
Checksums-Sha256:
ddb2b44f2ab311abd11d394f9d827006ac09830807a037fcd9bfd730138fa410 2416 pypy3_7.3.11+dfsg-2+deb12u2.dsc
21430a9e35a5a52a3c12146d4574ac1553ad5ba2990f8c282556985fa5122178 72488 pypy3_7.3.11+dfsg-2+deb12u2.debian.tar.xz
b4b52a2b0cf6ef87803e3f4c4ef607309dfb73f03178ffaaecdf048d947d2739 9667 pypy3_7.3.11+dfsg-2+deb12u2_source.buildinfo
Files:
957d42a556584b39257dda87f26af2aa 2416 python optional pypy3_7.3.11+dfsg-2+deb12u2.dsc
7343820fa09728e13d9dd4c2f0d730c5 72488 python optional pypy3_7.3.11+dfsg-2+deb12u2.debian.tar.xz
f22fdedcb02eed90d83e60c1e1bdcd5e 9667 python optional pypy3_7.3.11+dfsg-2+deb12u2_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iIoEARYKADIWIQTumtb5BSD6EfafSCRHew2wJjpU2AUCZjLiTxQcc3RlZmFub3JA
ZGViaWFuLm9yZwAKCRBHew2wJjpU2DNUAP4iDEuBJyLX31Gq0Ivd4EqSFExG+tR2
D0R6mKSEqYOS8QEA1JWY+HqrI2Kd8bL0oCH8tGvwxSctKZEPhbLYwkDxUQw=
=QtdZ
-----END PGP SIGNATURE-----
