From: Martin Panter Date: Thu, 14 Jul 2016 02:09:17 +0000 (+0000) Subject: Issue #27369: Merge test_pyexpat from 3.3 into 3.4 X-Git-Tag: v3.4.6rc1~37 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=b7b5d35545d2d078e868cbda485bc4651edec4ff;p=thirdparty%2FPython%2Fcpython.git Issue #27369: Merge test_pyexpat from 3.3 into 3.4 --- b7b5d35545d2d078e868cbda485bc4651edec4ff diff --cc Misc/NEWS index 42d30a7cf405,ef5bdc8eec18..2d4b4da91060 --- a/Misc/NEWS +++ b/Misc/NEWS @@@ -10,58 -10,52 +10,64 @@@ Release date: TB Core and Builtins ----------------- -- Issue #25709: Fixed problem with in-place string concatenation and utf-8 cache. +Library +------- -- Issue #24407: Fix crash when dict is mutated while being updated. ++Tests ++----- + -- Issue #24097: Fixed crash in object.__reduce__() if slot name is freed inside - __getattr__. ++- Issue #27369: In test_pyexpat, avoid testing an error message detail that ++ changed in Expat 2.2.0. + -- Issue #24096: Make warnings.warn_explicit more robust against mutation of the - warnings.filters list. -- Issue #24044: Fix possible null pointer dereference in list.sort in out of - memory conditions. +What's New in Python 3.4.5? +=========================== -- Issue #23055: Fixed a buffer overflow in PyUnicode_FromFormatV. Analysis - and fix by Guido Vranken. +Release date: 2016-06-26 -Library -------- +Tests +----- -- Issue #24521: Fix possible integer overflows in the pickle module. +- Issue #26867: Ubuntu's openssl OP_NO_SSLv3 is forced on by default; fix test. -- Issue #22931: Allow '[' and ']' in cookie values. -- Issue #24094: Fix possible crash in json.encode with poorly behaved dict - subclasses. +What's New in Python 3.4.5rc1? +============================== -- Issue #23367: Fix possible overflows in the unicodedata module. +Release date: 2016-06-11 -- Issue #23361: Fix possible overflow in Windows subprocess creation code. +Core and Builtins +----------------- -- Issue #23363: Fix possible overflow in itertools.permutations. +- Issue #26478: Fix semantic bugs when using binary operators with dictionary + views and tuples. -- Issue #23364: Fix possible overflow in itertools.product. +- Issue #26171: Fix possible integer overflow and heap corruption in + zipimporter.get_data(). -- Issue #23369: Fixed possible integer overflow in - _json.encode_basestring_ascii. +Library +------- -- Issue #23366: Fixed possible integer overflow in itertools.combinations. +- Issue #26556: Update expat to 2.1.1, fixes CVE-2015-1283. -- Issue #23365: Fixed possible integer overflow in - itertools.combinations_with_replacement. +- Fix TLS stripping vulnerability in smptlib, CVE-2016-0772. Reported by Team + Oststrom -C API ------ +- Issue #25939: On Windows open the cert store readonly in ssl.enum_certificates. -- Issue #23998: PyImport_ReInitLock() now checks for lock allocation error +- Issue #26012: Don't traverse into symlinks for ** pattern in + pathlib.Path.[r]glob(). + +- Issue #24120: Ignore PermissionError when traversing a tree with + pathlib.Path.[r]glob(). Patch by Ulrich Petri. + +- Skip getaddrinfo if host is already resolved. + Patch by A. Jesse Jiryu Davis. + +- Add asyncio.timeout() context manager. + +- Issue #26050: Add asyncio.StreamReader.readuntil() method. + Patch by Марк Коренберг. Tests -----