New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
python: 2.7.14 -> 2.7.15 (bugfix + security) #40005
Conversation
27177 was merged but not backported to 2.7. There is currently an open PR for 25750.
Fixes CVE-2018-1000030, /cc NixOS#38993. The ncurses patch no longer applied, and it appears the problems have been resolved upstream https://bugs.python.org/issue25720 python/cpython@6ba0b583d67
The security severity isn't too high, I guess. #38993 (comment) But I hope the patch update is safe enough to go to staging directly. I only tried compiling a few reverse dependencies. |
Success on x86_64-linux (full log) Attempted: python Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: python Partial log (click to expand)
|
Failure on x86_64-darwin (full log) Attempted: python Partial log (click to expand)
|
Pushed 59beaf7 to staging. Keeping this open until it lands in master. Still need to backport to master. |
59beaf7 doesn't include #39555 right? Is that on purpose? |
@timokau yes, I first wanted to see whether the actual version bump would work out well, before adding your change. Considering staging is stuck there isn't really any hurry either. |
Since 59beaf7 is in master now, I think this can be closed. |
Fixes CVE-2018-1000030, /cc #38993.
The ncurses patch no longer applied, and it appears the problems have been resolved upstream https://bugs.python.org/issue25720 python/cpython@6ba0b583d67
Motivation for this change
Things done
build-use-sandbox
innix.conf
on non-NixOS)nix-shell -p nox --run "nox-review wip"
./result/bin/
)