rpms/python3.12
13
0
Fork 0
Code Issues Pull Requests Releases Activity
871 Commits 9 Branches 45 Tags 3.2 MiB
d13f383380
Commit Graph

69 Commits

Author SHA1 Message Date
Lumir Balhar
9773976f48 Security fix for CVE-2025-8194 
Resolves: RHEL-106329
 2025-08-14 12:46:17 +02:00
Charalampos Stratakis
089ee7dabc Enable PAC and BTI hardware protections for aarch64 
Resolves: RHEL-84196
 2025-06-26 17:31:35 +02:00
Tomáš Hrnčiar
2df52fc4d4 Update to 3.12.11 
Security fixes for CVE-2025-4517, CVE-2025-4330, CVE-2025-4138, CVE-2024-12718, CVE-2025-4435

Resolves: RHEL-98060, RHEL-98047, RHEL-97813, RHEL-98062, RHEL-98180
 2025-06-19 02:25:00 +02:00
Charalampos Stratakis
fa78be5cfd Fix PySSL_SetError handling SSL_ERROR_SYSCALL 
This fixes random flakiness of test_ssl on stressed machines

Resolves: RHEL-90555
 2025-05-14 01:28:19 +02:00
Charalampos Stratakis
99a61c17c2 Apply Intel's CET for mitigation against control-flow hijacking attacks 
Resolves: RHEL-67040
 2025-04-24 01:17:15 +02:00
Miro Hrončok
d8b222bc0c Update to 3.12.10 
Patch 452 was merged upstream.
 2025-04-09 11:45:58 +02:00
Charalampos Stratakis
bad8995059 Properly apply exported CFLAGS for dtrace/systemtap builds 
Also remove redundant --with-system-ffi configure option

Resolves: RHEL-85727
 2025-04-02 03:32:31 +02:00
Charalampos Stratakis
7b176c1385 Update to 3.12.9 
Security fix for CVE-2025-0938

Resolves: RHEL-77264
 2025-02-04 23:08:53 +01:00
Charalampos Stratakis
1d8a03b678 Security fix for CVE-2024-12254 
Resolves: RHEL-70450
 2024-12-10 16:38:29 +01:00
Charalampos Stratakis
9b4125da93 Update to 3.12.8 
Security fix for CVE-2024-9287

Resolves: RHEL-64877
 2024-12-10 16:36:09 +01:00
Troy Dawson
faa69d51c8 Bump release for October 2024 mass rebuild: 
Resolves: RHEL-64018
 2024-10-29 09:05:12 -07:00
Tomáš Hrnčiar
7791e1d981 Update to 3.12.6 
Resolves: RHEL-57397
 2024-09-18 22:28:32 +02:00
Charalampos Stratakis
af99d24518 Security fix for CVE-2024-8088 
Resolves: RHEL-55923
 2024-08-26 14:01:47 +02:00
Tomáš Hrnčiar
a3bab2af21 Update to 3.12.5 
Security fix for CVE-2024-6923

Removed patch 323 due to being upstreamed

Resolves: RHEL-53036
 2024-08-08 17:16:32 +02:00
Miro Hrončok
8e96f03e3d Build Python with -O3 
https://fedoraproject.org/wiki/Changes/Python_built_with_gcc_O3

Resolves: RHEL-45315
 2024-07-17 14:39:52 +02:00
Charalampos Stratakis
c0743142b2 Fix issues uncovered by static analysis 
Resolves: RHEL-45021
 2024-07-11 17:22:12 +02:00
Tomáš Hrnčiar
65ab1b123f Require expat >= 2.6 to prevent errors when creating venvs with older expat 
The code in CPython uses XML_SetReparseDeferralEnabled when expat is >= 2.6 during the build.
However, when users upgrade Python independently on the expat package,
they may have expat 2.5 installed and see errors like:

    $ python3.1X -m venv venv
    Error: Command '['venv/bin/python3.1X', '-m', 'ensurepip', '--upgrade', '--default-pip']' returned non-zero exit status 1.

    $ venv/bin/python3.1X -m ensurepip --upgrade --default-pip
    Traceback (most recent call last):
      ...
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_internal/commands/install.py", line 15, in <module>
        from pip._internal.cli.req_command import (
        ...<3 lines>...
        )
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_internal/cli/req_command.py", line 21, in <module>
        from pip._internal.index.package_finder import PackageFinder
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_internal/index/package_finder.py", line 30, in <module>
        from pip._internal.req import InstallRequirement
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_internal/req/__init__.py", line 8, in <module>
        from .req_install import InstallRequirement
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_internal/req/req_install.py", line 40, in <module>
        from pip._internal.operations.install.wheel import install_wheel
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_internal/operations/install/wheel.py", line 39, in <module>
        from pip._vendor.distlib.scripts import ScriptMaker
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_vendor/distlib/scripts.py", line 16, in <module>
        from .compat import sysconfig, detect_encoding, ZipFile
      File "/tmp/.../pip-24.0-py3-none-any.whl/pip/_vendor/distlib/compat.py", line 81, in <module>
        import xmlrpc.client as xmlrpclib
      File "/usr/lib64/python3.1X/xmlrpc/client.py", line 138, in <module>
        from xml.parsers import expat
      File "/usr/lib64/python3.1X/xml/parsers/expat.py", line 4, in <module>
        from pyexpat import *
    ImportError: /usr/lib64/python3.1X/lib-dynload/pyexpat.cpython-31X-x86_64-linux-gnu.so: undefined symbol: XML_SetReparseDeferralEnabled
    Traceback (most recent call last):
      ...
    subprocess.CalledProcessError: Command '['venv/bin/python3.1X', '-W', 'ignore::DeprecationWarning', '-c', '\nimport runpy\nimport sys\nsys.path = [\'/tmp/.../pip-24.0-py3-none-any.whl\'] + sys.path\nsys.argv[1:] = [\'install\', \'--no-cache-dir\', \'--no-index\', \'--find-links\', \'/tmp/...\', \'--upgrade\', \'pip\']\nrunpy.run_module("pip", run_name="__main__", alter_sys=True)\n']' returned non-zero exit status 1.

Thanks to Markus Falb for discovering this problem.

https://lists.fedoraproject.org/archives/list/python-devel@lists.fedoraproject.org/thread/7XHGWHBQDNFKNGSZTP44SSD6PQKZPG6C/
 2024-07-04 14:52:19 +02:00
Tomáš Hrnčiar
c2001b938e Update to 3.12.4 
Resolves: RHEL-44054
 2024-07-04 10:48:19 +02:00
Tomáš Hrnčiar
db9a20acee Update to 3.12.3 2024-07-03 21:06:43 +02:00
Troy Dawson
d2df86f2be Bump release for June 2024 mass rebuild 2024-06-24 09:16:39 -07:00
Charalampos Stratakis
af16c99e30 Enable importing of hash-based .pyc files under FIPS mode 
Resolves: RHEL-40769
 2024-06-11 21:43:32 +02:00
Charalampos Stratakis
6302d4b3b0 Support OpenSSL FIPS mode 
Disable the builtin hashlib hashes except blake2

Resolves: RHEL-3906
 2024-05-28 21:22:36 +02:00
Charalampos Stratakis
5e6c857143 Add Red Hat configuration for CVE-2007-4559 
Resolves: RHEL-33847
 2024-05-09 15:13:17 +02:00
Miro Hrončok
9f5de9df82 Remove the nis module, drop the dependency on libnsl2 2024-04-23 18:08:50 +02:00
Miro Hrončok
0ca4fb92bf Merge fedora/rawhide into c10s 2024-03-26 11:45:41 +01:00
Miro Hrončok
9c9178a72b Move all test modules to the test subpackage 
- __phello__
  - _xxsubinterpreters
  - xxlimited
  - xxlimited_35
  - xxsubtype

Source: https://github.com/python/cpython/blob/v3.12.2/Tools/build/generate_stdlib_module_names.py#L23
 2024-03-21 12:29:18 +01:00
Lumir Balhar
5d12698d82 Add provides and symbolic links for compatibility with platform-python 
Resolves: RHEL-27855
 2024-03-04 15:23:09 +01:00
Miro Hrončok
c0ffafcda5 Fix tests for XMLPullParser with Expat 2.6.0 
See also: https://bugzilla.redhat.com/2264859
 2024-02-21 11:58:17 +01:00
Tomáš Hrnčiar
d3e4f80070 Update to 3.12.2 2024-02-08 16:33:19 +01:00
Fedora Release Engineering
ff956d27be Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild 2024-01-26 13:32:50 +00:00
Fedora Release Engineering
c604248608 Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild 2024-01-22 09:22:06 +00:00
Tomáš Hrnčiar
90929e6c2e Require python3-rpm-generators even when bootstrapping non-main Pythons 2024-01-05 11:51:54 +01:00
Lumir Balhar
7a094a0571 Security fix for CVE-2023-27043 (rhbz#2196190) 2023-12-18 13:17:51 +01:00
Miro Hrončok
3c67985ace Own stray directories in /usr/lib64/python3.12 
Fixes https://bugzilla.redhat.com/2252143
 2023-12-08 20:15:03 +01:00
Tomáš Hrnčiar
cc458c9fb3 Update to 3.12.1 2023-12-08 14:38:32 +01:00
Yaakov Selkowitz
261b6e48d6 Use bundled libb2 in RHEL builds 
Standalone libb2 is unwanted in RHEL.
 2023-10-04 23:18:39 -04:00
Miro Hrončok
187d5c28b8 Update to 3.12.0 final 2023-10-02 18:40:13 +02:00
Miro Hrončok
fb0049bb7a Update to 3.12.0rc3 2023-09-19 23:20:46 +02:00
Tomáš Hrnčiar
614cafc400 Update to 3.12.0rc2 2023-09-06 14:15:23 +02:00
Tomáš Hrnčiar
0483fca31a Update to 3.12.0rc1 2023-08-08 16:16:05 +02:00
Charalampos Stratakis
1f830e372b Remove extra distro-applied CFLAGS passed to user-built C extensions 
Only -fexceptions and -fcf-protection are preserved for binary
compatibility with user-built python C extension.

https://fedoraproject.org/wiki/Changes/Python_Extension_Flags_Reduction
 2023-08-04 16:06:57 +02:00
Fedora Release Engineering
88668cf1f4 Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-07-21 15:42:31 +00:00
Miro Hrončok
bc99d88db7 Update to 3.12.0b4 
Patch 402 is part of this release.
 2023-07-12 07:01:20 +02:00
Tomáš Hrnčiar
2d8f888430 Backport upstream patch to add PyType_GetDict() function 2023-06-21 10:04:34 +02:00
Tomáš Hrnčiar
8522651180 Update to 3.12.0b3 2023-06-20 18:45:12 +02:00
Python Maint
5b9ff3722c Rebuilt for Python 3.12 2023-06-13 17:23:48 +02:00
Python Maint
8b139823bd Bootstrap for Python 3.12 2023-06-13 15:03:26 +02:00
Tomáš Hrnčiar
036d63f211 Update to 3.12.0b2 2023-06-08 11:29:08 +02:00
Miro Hrončok
6073e4f006 --without rpmwheels: Declare bundled() provides and a complex License tag 2023-05-30 19:26:33 +02:00
Miro Hrončok
0c82a4ac9f Use wheels from RPMs, at least on Fedora 39+ 2023-05-29 16:00:31 +02:00