package/python3: security bump to 3.10.6 (f4cbf417) · Commits · Arm Reference Solutions / buildroot

Commit f4cbf417 authored Sep 01, 2022 by Marcus Hoffmann Committed by Peter Korsgaard Sep 03, 2022

package/python3: security bump to 3.10.6

Fixes the following security issues:

- gh-92888: Fix memoryview use after free when accessing the backing buffer
  in certain cases.

- gh-87389: http.server: Fix an open redirection vulnerability in the HTTP
  server when an URI path starts with //.

Release notes:
https://docs.python.org/release/3.10.6/whatsnew/changelog.html#python-3-10-6-final



Signed-off-by: Marcus Hoffmann <marcus.hoffmann@othermo.de>
[Peter: Mark as security bump]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

parent 1c0da88a

Hide whitespace changes

Inline Side-by-side

Please register or to comment