Update to 41.0.7, fixes CVE-2023-49083

Cherry-picked from fdff266e83

Co-Authored-By: Miro Hrončok <miro@hroncok.cz>

Resolves: RHEL-17730
This commit is contained in:
Benjamin A. Beasley 2024-02-01 10:48:14 -05:00 committed by Miro Hrončok
parent a495fb721f
commit 4aaef7c0cc
3 changed files with 12 additions and 6 deletions

2
.gitignore vendored
View File

@ -59,3 +59,5 @@
/cryptography-41.0.3-vendor.tar.bz2 /cryptography-41.0.3-vendor.tar.bz2
/cryptography-41.0.5-vendor.tar.bz2 /cryptography-41.0.5-vendor.tar.bz2
/cryptography-41.0.5.tar.gz /cryptography-41.0.5.tar.gz
/cryptography-41.0.7.tar.gz
/cryptography-41.0.7-vendor.tar.bz2

View File

@ -7,8 +7,8 @@
%global srcname cryptography %global srcname cryptography
Name: python%{python3_pkgversion}-%{srcname} Name: python%{python3_pkgversion}-%{srcname}
Version: 41.0.5 Version: 41.0.7
Release: 2%{?dist} Release: 1%{?dist}
Summary: PyCA's cryptography library Summary: PyCA's cryptography library
# We bundle various crates with cryptography which is dual licensed # We bundle various crates with cryptography which is dual licensed
@ -136,9 +136,9 @@ Provides: bundled(crate(libc)) = 0.2.144
Provides: bundled(crate(lock_api)) = 0.4.9 Provides: bundled(crate(lock_api)) = 0.4.9
Provides: bundled(crate(memoffset)) = 0.8.0 Provides: bundled(crate(memoffset)) = 0.8.0
Provides: bundled(crate(once_cell)) = 1.17.2 Provides: bundled(crate(once_cell)) = 1.17.2
Provides: bundled(crate(openssl)) = 0.10.54 Provides: bundled(crate(openssl)) = 0.10.60
Provides: bundled(crate(openssl-macros)) = 0.1.1 Provides: bundled(crate(openssl-macros)) = 0.1.1
Provides: bundled(crate(openssl-sys)) = 0.9.88 Provides: bundled(crate(openssl-sys)) = 0.9.96
Provides: bundled(crate(ouroboros)) = 0.15.6 Provides: bundled(crate(ouroboros)) = 0.15.6
Provides: bundled(crate(ouroboros_macro)) = 0.15.6 Provides: bundled(crate(ouroboros_macro)) = 0.15.6
Provides: bundled(crate(parking_lot)) = 0.12.1 Provides: bundled(crate(parking_lot)) = 0.12.1
@ -239,6 +239,9 @@ PYTHONPATH=${PWD}/vectors:%{buildroot}%{python3_sitearch} \
%{python3_sitearch}/%{srcname}-%{version}-py*.egg-info %{python3_sitearch}/%{srcname}-%{version}-py*.egg-info
%changelog %changelog
* Tue Feb 06 2024 Miro Hrončok <mhroncok@redhat.com> - 41.0.7-1
- Update to 41.0.7, fixes CVE-2023-49083
* Tue Jan 23 2024 Miro Hrončok <mhroncok@redhat.com> - 41.0.5-2 * Tue Jan 23 2024 Miro Hrončok <mhroncok@redhat.com> - 41.0.5-2
- Rebuilt for timestamp .pyc invalidation mode - Rebuilt for timestamp .pyc invalidation mode
@ -246,6 +249,7 @@ PYTHONPATH=${PWD}/vectors:%{buildroot}%{python3_sitearch} \
- Initial package - Initial package
- Fedora contributions by: - Fedora contributions by:
Alfredo Moralejo <amoralej@redhat.com> Alfredo Moralejo <amoralej@redhat.com>
Benjamin A. Beasley <code@musicinmybrain.net>
Charalampos Stratakis <cstratak@redhat.com> Charalampos Stratakis <cstratak@redhat.com>
Christian Heimes <christian@python.org> Christian Heimes <christian@python.org>
Colin Walters <walters@verbum.org> Colin Walters <walters@verbum.org>

View File

@ -1,2 +1,2 @@
SHA512 (cryptography-41.0.5.tar.gz) = b647b4f5155437242d7a31d84bd1cdc83284d96d334a3d6169533d597540f525d3f1686bab3a5fe3cb64a4fa6ded5e5d19489dfff0e93d86c274f20e69ca07e9 SHA512 (cryptography-41.0.7.tar.gz) = 9a870d45296de6af1331e73b102226b8269892216cd7bc0adfb2f63ce1ca7021d338effd09182128253d8d8df154bbd19d46c47f10ddac86e739fcbf6df78307
SHA512 (cryptography-41.0.5-vendor.tar.bz2) = 67f0575a1ff53bfba01b14f01f79f2442b0971c67c23eb32ebf77813c7a7e22efdcea3ed6926712cb4d875f71b6f21d24c105b3cdad51e24dc84fa3995edd381 SHA512 (cryptography-41.0.7-vendor.tar.bz2) = dbf750a1ada4a9330939e3dae8311007a9e25808eb64c124c99981187d1bc04baba3a7d3b838c0cd9491e8350c382fb0f789a11abb21c633f2d78e8aba819b9e