Ubuntu
python2.7 package

Change logs for python2.7 source package in Zesty

  1. Zesty (17.04)
  2. Change log 
  • python2.7 (2.7.13-2ubuntu0.2) zesty-proposed; urgency=medium

  * Some performance improvements: LP: #1638695.
    - Build the _math.o object file without -fPIC for static builds.
  * Rename md5_* functions to _Py_md5_*. Closes: #868366. LP: #1734109.
  * Explicitly use the system python for byte compilation in postinst scripts.
    LP: #1682934.

 -- Matthias Klose <email address hidden>  Mon, 04 Dec 2017 15:53:22 +0100
  • python2.7 (2.7.13-2ubuntu0.1) zesty-security; urgency=medium

  * SECURITY UPDATE: integer overflow in the PyString_DecodeEscape
    function
    - debian/patches/CVE-2017-1000158.patch: fix this integer overflow
      in Objects/stringobject.c.
    - CVE-2017-1000158

 -- <email address hidden> (Leonidas S. Barbosa)  Thu, 23 Nov 2017 12:37:09 -0300
  • python2.7 (2.7.13-2) unstable; urgency=medium

  * Lower priority of interpreter packages to optional.

 -- Matthias Klose <email address hidden>  Thu, 19 Jan 2017 15:48:08 +0100
  • python2.7 (2.7.13-1) unstable; urgency=medium

  * Python 2.7.13 release.
    - Revert a37cc3d926ec (Issue #5322). Closes: #847791.
  * Fix one more broken -gdb.py symlink. Closes: #807513.

 -- Matthias Klose <email address hidden>  Sun, 18 Dec 2016 21:19:42 +0100
  • python2.7 (2.7.13~rc1-1) unstable; urgency=medium

  * Python 2.7.13 release candidate 1.
    - Issue #5322: Fixed setting __new__ to a PyCFunction inside Python code.
    - Issue #28847: dumbdbm no longer writes the index file in when it is not
      changed and supports reading read-only files.
    - Issue #11145: Fixed miscellaneous issues with C-style formatting of types
      with custom __oct__ and __hex__.
    - Issue #24469: Fixed memory leak caused by int subclasses without overridden
      tp_free (e.g. C-inherited Cython classes).
  * Pass CXX when configuring and building. Closes: #846326.
  * Add profile for libbluetooth-dev build dependency. Closes: #738520.

 -- Matthias Klose <email address hidden>  Sun, 04 Dec 2016 15:12:39 +0100
  • python2.7 (2.7.12-7) unstable; urgency=medium

  * Update to 20161121 from the 2.7 branch.
    - Issue #19398: Extra slash no longer added to sys.path components
      in case of empty compile-time PYTHONPATH components.
    - Issue #25659: In ctypes, prevent a crash calling the from_buffer() and
      from_buffer_copy() methods on abstract classes like Array.
    - Issue #28563: Fixed possible DoS and arbitrary code execution when handle
      plural form selections in the gettext module.  The expression parser now
      supports exact syntax supported by GNU gettext.
    - Issue #25507: Add back import needed for 2.x encoding warning box.
      Add pointer to 'Encoding declaration' in Language Reference.
    - Issue #28666: Now test.test_support.rmtree is able to remove unwritable
      or unreadable directories.
    - Issue #23839: Various caches now are cleared before running every
      test file.
    - Issue #26359: Rename --with-optimiations to --enable-optimizations.

 -- Matthias Klose <email address hidden>  Tue, 22 Nov 2016 01:48:54 +0100
  • python2.7 (2.7.12-5) unstable; urgency=medium

  * Update to 20161104 from the 2.7 branch.
    - Issue #28387: Fixed possible crash in _io.TextIOWrapper deallocator when
      the garbage collector is invoked in other thread.
  * Disable some lib2to3 tests relying on the saved pickled grammar files.

 -- Matthias Klose <email address hidden>  Fri, 04 Nov 2016 18:04:30 +0100
  • python2.7 (2.7.12-4) unstable; urgency=medium

  * Update to 20161103 from the 2.7 branch.
    - Issue #21720: Improve exception message when the type of fromlist is
      unicode.  fromlist parameter of __import__() only accepts str in Python 2
      and this will help to identify the problem especially when the
      unicode_literals future import is used.
    - Issue #26906: Resolving special methods of uninitialized type now causes
      implicit initialization of the type instead of a fail.
    - Issue #18287: PyType_Ready() now checks that tp_name is not NULL.
    - Issue #24098: Fixed possible crash when AST is changed in process of
      compiling it.
    - Issue #28350: String constants with null character no longer interned.
    - Issue #27942: String constants now interned recursively in tuples and
      frozensets.
    - Issue #15578: Correctly incref the parent module while importing.
    - Issue #26307: The profile-opt build now applies PGO to the built-in
      modules.
    - Issue #26020: set literal evaluation order did not match documented
      behaviour.
    - Issue #28449: tarfile.open() with mode "r" or "r:" now tries to open a
      tar file with compression before trying to open it without compression.
      Otherwise it had 50% chance failed with ignore_zeros=True.
    - Issue #25464: Fixed HList.header_exists() in Tix module by adding
      a workaround to Tix library bug.
    - Issue #28488: shutil.make_archive() no longer adds entry "./" to ZIP
      archive.
    - Issue #28480: Fix error building _sqlite3 module when multithreading is
      disabled.
    - Issue #26293: Fixed writing ZIP files that starts not from the start of
      the file.  Offsets in ZIP file now are relative to the start of the
      archive in conforming to the specification.
    - Fix possible integer overflows and crashes in the mmap module with
      unusual usage patterns.
    - Issue #27897: Fixed possible crash in
      sqlite3.Connection.create_collation() if pass invalid string-like object
      as a name.
    - Issue #1703178: Fix the ability to pass the --link-objects option to the
      distutils build_ext command.
    - Issue #28253: Fixed calendar functions for extreme months: 0001-01
      and 9999-12.
      Methods itermonthdays() and itermonthdays2() are reimplemented so
      that they don't call itermonthdates() which can cause datetime.date
      under/overflow.
    - Issue #27963: Fixed possible null pointer dereference in
      ctypes.set_conversion_mode().
    - Issue #28284: Strengthen resistance of ``_json.encode_basestring_ascii()``
      to integer overflow.
    - Issue #27611: Fixed support of default root window in the Tix module.
    - Issue #24363: When parsing HTTP header fields, if an invalid line is
      encountered, skip it and continue parsing.  Previously, no more header
      fields were parsed, which could lead to fields for HTTP framing like
      Content-Length and Transfer-Encoding being overlooked.
    - Issue #27599: Fixed buffer overrun in binascii.b2a_qp() and
      binascii.a2b_qp().
    - Issue #25969: Update the lib2to3 grammar to handle the unpacking
      generalizations added in 3.5.
    - Issue #24594: Validates persist parameter when opening MSI database
    - Issue #27570: Avoid zero-length memcpy() etc calls with null source
      pointers in the "ctypes" and "array" modules.
    - Issue #22450: urllib now includes an "Accept: */*" header among the
      default headers.  This makes the results of REST API requests more
      consistent and predictable especially when proxy servers are involved.
    - lib2to3.pgen3.driver.load_grammar() now creates a stable cache file
      between runs given the same Grammar.txt input regardless of the hash
      randomization setting.
    - Issue #27691: Fix ssl module's parsing of GEN_RID subject alternative
      name fields in X.509 certs.
    - Issue #27850: Remove 3DES from ssl module's default cipher list to
      counter measure sweet32 attack (CVE-2016-2183).
    - Issue #27766: Add ChaCha20 Poly1305 to ssl module's default ciper list.
      (Required OpenSSL 1.1.0 or LibreSSL).
    - Issue #26470: Port ssl and hashlib module to OpenSSL 1.1.0.
      Closes: #835793.
    - Issue #27944: Fix some memory-corruption bugs in the log reading code
      of the _hotshot module.
    - Issue #27934: Use ``float.__repr__`` instead of plain ``repr`` when JSON-
      encoding an instance of a float subclass.
    - Issue #21201: Improves readability of multiprocessing error message.
    - Issue #15308: Add 'interrupt execution' (^C) to Shell menu.
    - Issue #27922: Stop IDLE tests from 'flashing' gui widgets on the screen.
    - Issue #17642: add larger font sizes for classroom projection.
    - Add version to title of IDLE help window.
    - Issue #25564: In section on IDLE -- console differences, mention that
      using exec means that __builtins__ is defined for each statement.
    - Issue #28513: Documented command-line interface of zipfile.
    - Issue #28258: Fixed build with Estonian locale.
    - Issue #26661: setup.py now detects system libffi with multiarch wrapper.
    - Issue #15819: The Include directory in the build tree is already
      searched; drop unused code trying to add it again.
    - Issue #27566: Fix clean target in freeze makefile.
    - Issue #27983: Cause lack of llvm-profdata tool when using clang as
      required for PGO linking to be a configure time error rather than
      make time when --with-optimizations is enabled.  Also improve our
      ability to find the llvm-profdata tool on MacOS and some Linuxes.
    - Issue #26359: Add the --with-optimizations configure flag.
    - Issue #27952: Get Tools/scripts/fixcid.py working with the current "re"
      module, avoid invalid Python backslash escapes, and fix a bug parsing
      escaped C quote signs.

 -- Matthias Klose <email address hidden>  Thu, 03 Nov 2016 11:11:39 +0100
  • python2.7 (2.7.12-3build1) yakkety; urgency=medium

  * No-change rebuild for readline soname change.

 -- Matthias Klose <email address hidden>  Sat, 17 Sep 2016 12:08:02 +0000