Commits

Show all
Author Commit Message Labels Comments Date
Martin von Löwis
Prepare for 2.4.6.
Tags
v2.4.6
Branches
2.4
Matthias Klose
- Mention CVE-2008-5031 in issue #4469.
Branches
2.4
Martin von Löwis
Add 2.4.6 final section.
Branches
2.4
Martin von Löwis
Tagging for release of Python 2.4.6c1
Branches
2.4
Martin von Löwis
Add 2.4.6 uuids.
Tags
v2.4.6c1
Branches
2.4
Martin von Löwis
Prepare for 2.4.6c1.
Branches
2.4
Martin von Löwis
Backported r55839 and r61350 Issue #4469: Prevent expandtabs() on string and unicode objects from causing a segfault when a large width is passed on 32-bit platforms.
Branches
2.4
Matthias Klose
- Tools/faqwiz/move-faqwiz.sh: Fix unsecure use of temporary files.
Branches
2.4
Amaury Forgeot d'Arc
#4317: Fix an Array Bounds Read in imageop.rgb2rgb8. Backport of r67266
Branches
2.4
Benjamin Peterson
update svn:ignore here
Branches
2.4
Benjamin Peterson
backport the security fix part of r67246
Branches
2.4
Matthias Klose
- Security Issue #2: imageop did not validate arguments correctly and could segfault as a result. CVE-2008-4864. backport r66689
Branches
2.4
Matthias Klose
- Issue #2587: In the C API, PyString_FromStringAndSize() takes a signed size parameter but was not verifying that it was greater than zero. Values less than zero will now raise a SystemError and return NULL to indicate a bug in the calling C code. CVE-2008-1887. backport r62261, r62271
Branches
2.4
Matthias Klose
- Issues #2588, #2589: Fix potential integer underflow and overflow conditions in the PyOS_vsnprintf C API function. CVE-2008-3144.
Branches
2.4
Matthias Klose
- Issue #2586: Fix CVE-2008-1721, zlib crash from zlib.decompressobj().flush(val) when val is not positive.
Branches
2.4
Matthias Klose
- Issue #1179: Fix CVE-2007-4965 and CVE-2008-1679, multiple integer overflows in the imageop and rgbimgmodule modules.
Branches
2.4
Matthias Klose
- Moved entries added after the 2.4.5 release to a new 2.4.6. entry.
Branches
2.4
Neal Norwitz
Security patches from Apple: prevent int overflow when allocating memory
Branches
2.4
Neal Norwitz
Backport r65182. This change modified from using the unsigned max value to the signed max value similar to 2.5 and trunk. Issue #2620: Overflow checking when allocating or reallocating memory was not always being done properly in some python types and extension modules. PyMem_MALLOC, PyMem_REALLOC, PyMem_NEW and PyMem_RESIZE have all been updated to perform better checks and places in the code that would previously leak memory on the error path when such an allocation failed have been fixed.
Branches
2.4
Martin von Löwis
Tag 2.4.5.
Branches
2.4
Martin von Löwis
Prepare for 2.4.5
Tags
v2.4.5
Branches
2.4
Martin von Löwis
Tagging for release of Python 2.4.5c1
Branches
2.4
Martin von Löwis
Prepare for 2.4.5c1
Tags
v2.4.5c1
Branches
2.4
Martin von Löwis
Backport of r60793: Added checks for integer overflows, contributed by Google. Some are only available if asserts are left in the code, in cases where they can't be triggered from Python code.
Branches
2.4
Martin von Löwis
Revert the following revisions, as they don't fix security problems: 52448, 52468, 52472, 52475, 52646, 52797, 52802, 52863, 52999, 53001, 53101, 53371, 53373, 53383, 53384, 53736, 53812, 53921, 55578, 55580, 55581, 55772, 55775, 56557, 57093, 57094, 58630, 60114
Branches
2.4
Gregory P. Smith
Backport r60104 + r60111 from trunk. - Issue #1336: fix a race condition in subprocess.Popen if the garbage collector kicked in at the wrong time that would cause the process to hang when the child wrote to stderr.
Branches
2.4
Vinay Sajip
Bug #1321: Fixed logic error in TimedRotatingFileHandler.__init__()
Branches
2.4
Matthias Klose
- mark the findCaller 2-element tuple/3-element tuple change as new in 2.4
Branches
2.4
Matthias Klose
- fix build error with the findCaller backport
Branches
2.4
Martin von Löwis
Add uuids for upcoming 2.4.5 release.
Branches
2.4
  1. Prev
  2. Next