aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRasmus Thomsen <oss@cogitri.dev>2020-05-03 22:28:52 +0200
committerRasmus Thomsen <oss@cogitri.dev>2020-05-03 22:31:45 +0200
commitb9c639e03673ba5972f16271c575b155853d71b7 (patch)
treead1037b3150dbb1aa22a331d72ba4350e565748a
parent3ae2cc62ea1dd215cc5ed8c1368150d852017d4c (diff)
downloadaports-b9c639e03673ba5972f16271c575b155853d71b7.tar.gz
aports-b9c639e03673ba5972f16271c575b155853d71b7.tar.bz2
aports-b9c639e03673ba5972f16271c575b155853d71b7.tar.xz
main/python2: security upgrade to 2.7.18
ref #10794
-rw-r--r--main/python2/APKBUILD22
1 files changed, 9 insertions, 13 deletions
diff --git a/main/python2/APKBUILD b/main/python2/APKBUILD
index a4268f1630..eb457357c4 100644
--- a/main/python2/APKBUILD
+++ b/main/python2/APKBUILD
@@ -2,9 +2,9 @@
pkgname=python2
# the python2-tkinter's pkgver needs to be synchronized with this.
-pkgver=2.7.16
+pkgver=2.7.18
_verbase=${pkgver%.*}
-pkgrel=3
+pkgrel=0
pkgdesc="A high-level scripting language"
url="https://www.python.org/"
arch="all"
@@ -18,15 +18,15 @@ makedepends="expat-dev openssl-dev zlib-dev ncurses-dev bzip2-dev
source="https://www.python.org/ftp/python/$pkgver/Python-$pkgver.tar.xz
musl-find_library.patch
unchecked-ioctl.patch
- CVE-2019-9636.patch
- CVE-2019-9948.patch
- CVE-2019-16056.patch
- CVE-2019-16935.patch
"
builddir="$srcdir/Python-$pkgver"
# secfixes:
-# 2.7.16-33:
+# 2.7.18-r0:
+# - CVE-2019-18348
+# 2.7.17-r0:
+# - CVE-2019-15903
+# 2.7.16-r3:
# - CVE-2019-16056
# - CVE-2019-16935
# 2.7.16-r1:
@@ -147,10 +147,6 @@ wininst() {
"$subpkgdir"/usr/lib/python$_verbase/distutils/command
}
-sha512sums="16e814e8dcffc707b595ca2919bd2fa3db0d15794c63d977364652c4a5b92e90e72b8c9e1cc83b5020398bd90a1b397dbdd7cb931c49f1aa4af6ef95414b43e0 Python-2.7.16.tar.xz
+sha512sums="a7bb62b51f48ff0b6df0b18f5b0312a523e3110f49c3237936bfe56ed0e26838c0274ff5401bda6fc21bf24337477ccac49e8026c5d651e4b4cafb5eb5086f6c Python-2.7.18.tar.xz
ab8eaa2858d5109049b1f9f553198d40e0ef8d78211ad6455f7b491af525bffb16738fed60fc84e960c4889568d25753b9e4a1494834fea48291b33f07000ec2 musl-find_library.patch
-5a8e013a4132d71c4360771f130d27b37275ae59330cf9a75378dc8a11236017f540eb224f2a148984e82ca3fb6b29129375b1080ba05b81044faa717520ab82 unchecked-ioctl.patch
-54086e7b4d3597969b945b1460fe578ff3a13289703d58d79b8f00f644eccc4acc11fc6128b7b114f022a6f6cedc91e02eead6373bac0d36e22eb580a1becb53 CVE-2019-9636.patch
-2f9523bd3e39c4831110821d93aef1562ca80708f1b553428eb5c228cdf2192feb13d7aef41097a5df4b4243da8b8f7247f691c0ab73967b0bf2bf6a1a0d487f CVE-2019-9948.patch
-971006063001d3d2f40833d79e0317f3748c056b9c8d714ce1bb1e804ad4c3c174071324e123ea71d453a41b0db28caf49b8128d6adee5c9b5aea1b66d1da647 CVE-2019-16056.patch
-758a897f01665149a23cbc3898fe060c043647d6fe6d22d8ca9038554b4ef1c7b2ac638d37eaed265167cd50f9329be2518f07464dccb7a7ab34ec9be4710095 CVE-2019-16935.patch"
+5a8e013a4132d71c4360771f130d27b37275ae59330cf9a75378dc8a11236017f540eb224f2a148984e82ca3fb6b29129375b1080ba05b81044faa717520ab82 unchecked-ioctl.patch"