Update to 3.9.17

Security fix for CVE-2023-24329 Rebased patches: 189, 397 Resolves: rhbz#2173917
2023-06-26 22:27:49 +02:00 · 2023-06-26 22:27:49 +02:00 · f03b852dec
parent a1023e197c
commit f03b852dec
4 changed files with 11 additions and 2468 deletions
--- a/00189-use-rpm-wheels.patch
+++ b/00189-use-rpm-wheels.patch
@ -31,7 +31,7 @@ index e510cc7..5bd16a6 100644
 
 __all__ = ["version", "bootstrap"]
 -_SETUPTOOLS_VERSION = "58.1.0"
-_PIP_VERSION = "22.0.4"
+-_PIP_VERSION = "23.0.1"
 +
 +_WHEEL_DIR = "/usr/share/python-wheels/"
 +
--- a/00397-tarfile-filter.patch
+++ b/00397-tarfile-filter.patch
--- a/python3.9.spec
+++ b/python3.9.spec
@ -13,11 +13,11 @@ URL: https://www.python.org/

 #  WARNING  When rebasing to a new Python version,
 #           remember to update the python3-docs package as well
-%global general_version %{pybasever}.16
+%global general_version %{pybasever}.17
 #global prerel ...
 %global upstream_version %{general_version}%{?prerel}
 Version: %{general_version}%{?prerel:~%{prerel}}
-Release: 2%{?dist}
+Release: 1%{?dist}
 License: Python


@ -325,7 +325,7 @@ Patch189: 00189-use-rpm-wheels.patch
 # The versions are written in Lib/ensurepip/__init__.py, this patch removes them.
 # When the bundled setuptools/pip wheel is updated, the patch no longer applies cleanly.
 # In such cases, the patch needs to be amended and the versions updated here:
-%global pip_version 22.0.4
+%global pip_version 23.0.1
 %global setuptools_version 58.1.0

 # 00251 # 1b1047c14ff98eae6d355b4aac4df3e388813f62
@ -1808,6 +1808,11 @@ CheckPython optimized
 # ======================================================

 %changelog
+* Mon Jun 26 2023 Charalampos Stratakis <cstratak@redhat.com> - 3.9.17-1
+- Update to 3.9.17
+- Security fix for CVE-2023-24329
+Resolves: rhbz#2173917
+
 * Tue Mar 07 2023 Petr Viktorin <pviktori@redhat.com> - 3.9.16-2
 - Add filters for tarfile extraction (CVE-2007-4559, PEP-706)
 Resolves: rhbz#263261
--- a/4
+++ b/4
@ -1,2 +1,2 @@
-SHA512 (Python-3.9.16.tar.xz) = b5fd0afe131c82bbce6ddf887c59eef6945910d6a9a2bc87c0927f4e4a096bf9ca4d25bcb729c40f6ebb8a65fbe8bf7b0b97a7c4a8c9e551240eb4f34b878653
-SHA512 (Python-3.9.16.tar.xz.asc) = 468959c36a3ec6136f57a39475fff4745a25be0cb5d3d58cf3e5faf0b9ce2d2a8b89f1f9fea1479c4c6ad12ac49e97c1cfd4291c978bb3d30df5a582ec315210
+SHA512 (Python-3.9.17.tar.xz) = 994d92346e563a4635411808744eac8207c68e6fc9c1db1c2eb4103dad8553aaad4a8116e38c61f28cb17905a12cc46dccdde985e1c45882bf1815081b88b6be
+SHA512 (Python-3.9.17.tar.xz.asc) = 948196f104539b2e05b17fb5ef2387be392c515222213def7ab6f5b0f490d60e472e8df2dc6ec1df1d293a34d8c26a761412c93aabbdefd3390ee8bdef95a5d8