-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 23 Dec 2024 16:22:45 -0400 Source: pypy3 Binary: pypy3 pypy3-dbgsym pypy3-lib pypy3-tk pypy3-tk-dbgsym Architecture: i386 Version: 7.3.11+dfsg-2+deb12u3 Distribution: bookworm Urgency: medium Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) Changed-By: Stefano Rivera Description: pypy3 - fast alternative implementation of Python 3.x - PyPy interpreter pypy3-lib - standard library for PyPy (an alternative Python 3.x interpreter) pypy3-tk - Tkinter module for PyPy (an alternative Python 3.x interpreter) Changes: pypy3 (7.3.11+dfsg-2+deb12u3) bookworm; urgency=medium . * Security patches to the standard library: - CVE-2023-27043: Parse email addresses with special characters, correctly. - CVE-2024-9287: Quote path names in venv activation scripts. - CVE-2024-4032: Fix private IP address ranges. - CVE-2024-6232: Fix ReDoS when parsing tarfile headers. - CVE-2024-8088: Avoid infinite loop in zip file parsing. - CVE-2024-6923: Encode newlines in headers in the email module. - CVE-2024-7592: Quadratic complexity parsing cookies with backslashes. - CVE-2024-11168: Ensure addresses in brackets are valid IPv6 addresses. * Clean the python 2.7 source tree. * Clean cffi modules C source, lex and yacc tabs. Checksums-Sha1: 2fbe8ba27a7c47b48ce5f5887f2a4299c49661f4 2195536 pypy3-dbgsym_7.3.11+dfsg-2+deb12u3_i386.deb df47abf4a4a7e1c135400259555e91ad058f1969 2749464 pypy3-lib_7.3.11+dfsg-2+deb12u3_i386.deb 69ce477c9af5da3210491bbadc18a42b4620df5f 3092 pypy3-tk-dbgsym_7.3.11+dfsg-2+deb12u3_i386.deb b4c92e903514d173b1c274c5faa163223e8f642c 43576 pypy3-tk_7.3.11+dfsg-2+deb12u3_i386.deb 25ecf0cfa22a7ce966eecfb7c92cc8fcfd8d8c82 10654 pypy3_7.3.11+dfsg-2+deb12u3_i386-buildd.buildinfo 5a960da3c6f9b3c608f755e25a4422628810cca0 7082156 pypy3_7.3.11+dfsg-2+deb12u3_i386.deb Checksums-Sha256: 95773bbc8f98a5740cf922a44e1fdd939c0c6fecb8997d8348e28790e981f88e 2195536 pypy3-dbgsym_7.3.11+dfsg-2+deb12u3_i386.deb 43add9bd516b071a89e66639a93341180833ed70752f7ef91ead5da5e6a49b6e 2749464 pypy3-lib_7.3.11+dfsg-2+deb12u3_i386.deb ba8acc76e5dd2b3a3a1d5feac67fe4416679e31cc27bb2e11e1a0724c37d4633 3092 pypy3-tk-dbgsym_7.3.11+dfsg-2+deb12u3_i386.deb 8cb83b06fa01f43adf88c2afff1be93a046726d9189f064feadb0d6524ec99ba 43576 pypy3-tk_7.3.11+dfsg-2+deb12u3_i386.deb df515fafa89fafa3bbf0dc1d043abb4526a08acfd4631bb24a9071b6d98e8d9d 10654 pypy3_7.3.11+dfsg-2+deb12u3_i386-buildd.buildinfo 720fa27334837a84e9c5849bb6afd0f186e56b362d69d50d082013504424ec4f 7082156 pypy3_7.3.11+dfsg-2+deb12u3_i386.deb Files: 7513c1733680356555382b981dd4a51c 2195536 debug optional pypy3-dbgsym_7.3.11+dfsg-2+deb12u3_i386.deb 2c9fa8073b545216b35f8b124c3e401f 2749464 python optional pypy3-lib_7.3.11+dfsg-2+deb12u3_i386.deb 6d5177de703285bfc3a1b3ed9bf816eb 3092 debug optional pypy3-tk-dbgsym_7.3.11+dfsg-2+deb12u3_i386.deb 303d800ba7a98ddc1900514660a0cf3a 43576 python optional pypy3-tk_7.3.11+dfsg-2+deb12u3_i386.deb 08c0b85b97e8da7b5f05e483b9120353 10654 python optional pypy3_7.3.11+dfsg-2+deb12u3_i386-buildd.buildinfo 08bcd4e2c2d4db912444e3e68c3e4b7b 7082156 python optional pypy3_7.3.11+dfsg-2+deb12u3_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEGBeuno8wiDXCewDuqqLQG5ksqMMFAmdzK8YACgkQqqLQG5ks qMNfDQ//YHcBX9gyB8ZvtQ8+E7FUcRXreQVhNxAd1vrYzlrfH/K40kZrf71uXRqQ Jo5pSDDf+b7JPVEXTL1kJyGAKYF8GVzabViiBLNSzm9lqe3gKXhEvXeRqlVRUEi0 jaVoNqs5b7ANlHT1bg3BB8ykInit5uIVEAxuXxv0xaPZFdJCjSeS4gsIBWsQEPuW j0YIdTdv9I4bJL31fLovk+Bk+/wk6janSZVP1FnDrmz5VOK4yzyYwpcMgLfem1ME we/rKqF/kwIiJpB+HmJGunfSANizsF2zKgKQpONWfpviqqoocdjnUr5FezSpaoKH fY48xr+mmGQTMZbYTXLMMzjezJRj6MSugk2BPpxzpKY3b+H8FtDk6k1VjXOjYGRF 7EFYgL21W+DwFJKzFC/lg2orBM+DAr0IisWssJh1EIxeoUCMphEALkcXJAxssuPh 5sRWgLB3IrpjPLwLtk6xOdxAcalHJlGYzYFdIoWHQu0xH1e7pMMuVCd+zpgludJi n1PedRbiEwMLdcWBGxq4avUTCCScN+3o7lydOgh0ho3ab0uQvXKz0J4azp8gefTv DVs8g0Jy13vjmKFd+LUH2x6z3KXpPe6YfYJZ+Hqh2FifHr1IKk+kpRpgYE6Ph56D Ulo5YAW5J1DITnQdJcERdqMU6XczUd0Ax2QmCCH/Pv5X+TD16is= =ucF4 -----END PGP SIGNATURE-----