Martin v. Löwis
4556e7e002
Prepare for 2.4.6.
2008-12-19 15:02:52 +00:00
Matthias Klose
bc160b73db
- Mention CVE-2008-5031 in issue #4469 .
2008-12-16 13:12:32 +00:00
Martin v. Löwis
85788033fb
Add 2.4.6 final section.
2008-12-13 22:31:31 +00:00
Martin v. Löwis
3873dbd389
Tagging for release of Python 2.4.6c1
2008-12-13 13:37:28 +00:00
Martin v. Löwis
3b9c0f4aca
Add 2.4.6 uuids.
2008-12-13 13:37:04 +00:00
Martin v. Löwis
cc4e066902
Prepare for 2.4.6c1.
2008-12-13 13:34:10 +00:00
Martin v. Löwis
9b8de84a89
Backported r55839 and r61350
...
Issue #4469 : Prevent expandtabs() on string and unicode
objects from causing a segfault when a large width is passed
on 32-bit platforms.
2008-12-13 13:20:46 +00:00
Matthias Klose
aec20a604a
- Tools/faqwiz/move-faqwiz.sh: Fix unsecure use of temporary files.
2008-11-30 13:33:28 +00:00
Amaury Forgeot d'Arc
a5f3ceb21e
#4317 : Fix an Array Bounds Read in imageop.rgb2rgb8.
...
Backport of r67266
2008-11-18 22:49:39 +00:00
Benjamin Peterson
900fb20636
update svn:ignore here
2008-11-17 23:37:34 +00:00
Benjamin Peterson
38ce9c294b
backport the security fix part of r67246
2008-11-17 23:27:02 +00:00
Matthias Klose
3a87f93c42
- Security Issue #2 : imageop did not validate arguments correctly and could
...
segfault as a result. CVE-2008-4864.
backport r66689
2008-11-12 07:29:23 +00:00
Matthias Klose
b7cfda1324
- Issue #2587 : In the C API, PyString_FromStringAndSize() takes a signed size
...
parameter but was not verifying that it was greater than zero. Values
less than zero will now raise a SystemError and return NULL to indicate a
bug in the calling C code. CVE-2008-1887.
backport r62261, r62271
2008-11-12 07:21:52 +00:00
Matthias Klose
8af5d5791b
- Issues #2588 , #2589 : Fix potential integer underflow and overflow
...
conditions in the PyOS_vsnprintf C API function. CVE-2008-3144.
2008-11-12 07:08:51 +00:00
Matthias Klose
01feb5ad8d
- Issue #2586 : Fix CVE-2008-1721, zlib crash from
...
zlib.decompressobj().flush(val) when val is not positive.
2008-11-12 07:02:24 +00:00
Matthias Klose
8ad5f451e2
- Issue #1179 : Fix CVE-2007-4965 and CVE-2008-1679, multiple integer
...
overflows in the imageop and rgbimgmodule modules.
2008-11-12 06:54:33 +00:00
Matthias Klose
1596ed97d9
- Moved entries added after the 2.4.5 release to a new 2.4.6. entry.
2008-11-12 06:48:00 +00:00
Neal Norwitz
b93d7d52b5
Security patches from Apple: prevent int overflow when allocating memory
2008-07-31 17:04:32 +00:00
Neal Norwitz
46b3a79459
Backport r65182. This change modified from using the unsigned max value
...
to the signed max value similar to 2.5 and trunk.
Issue #2620 : Overflow checking when allocating or reallocating memory
was not always being done properly in some python types and extension
modules. PyMem_MALLOC, PyMem_REALLOC, PyMem_NEW and PyMem_RESIZE have
all been updated to perform better checks and places in the code that
would previously leak memory on the error path when such an allocation
failed have been fixed.
2008-07-28 05:22:45 +00:00
Martin v. Löwis
5cdbf772a8
Tag 2.4.5.
2008-03-11 18:01:21 +00:00
Martin v. Löwis
50d55ff8c7
Prepare for 2.4.5
2008-03-11 17:59:53 +00:00
Martin v. Löwis
d487aa11ed
Tagging for release of Python 2.4.5c1
2008-03-02 19:34:25 +00:00
Martin v. Löwis
ae1c290a05
Prepare for 2.4.5c1
2008-03-02 19:33:40 +00:00
Martin v. Löwis
c8ed4ff565
Backport of r60793:
...
Added checks for integer overflows, contributed by Google. Some are
only available if asserts are left in the code, in cases where they
can't be triggered from Python code.
2008-03-02 19:20:32 +00:00
Martin v. Löwis
0cc3ea620c
Revert the following revisions, as they don't fix security
...
problems:
52448, 52468, 52472, 52475, 52646, 52797, 52802, 52863, 52999, 53001,
53101, 53371, 53373, 53383, 53384, 53736, 53812, 53921, 55578, 55580,
55581, 55772, 55775, 56557, 57093, 57094, 58630, 60114
2008-03-02 17:47:51 +00:00
