[Python-checkins] cpython (3.5): NEWS: tag security related changes with [Security] prefix

victor.stinner python-checkins at python.org
Thu Jul 28 11:09:14 EDT 2016 

https://hg.python.org/cpython/rev/a576a34f5386
changeset:   102475:a576a34f5386
branch:      3.5
parent:      102473:48f074e2afcf
user:        Victor Stinner <victor.stinner at gmail.com>
date:        Thu Jul 28 17:06:25 2016 +0200
summary:
  NEWS: tag security related changes with [Security] prefix

Issue #27404.

files:
  Misc/NEWS |  20 ++++++++++----------
  1 files changed, 10 insertions(+), 10 deletions(-)


diff --git a/Misc/NEWS b/Misc/NEWS
--- a/Misc/NEWS
+++ b/Misc/NEWS
@@ -86,14 +86,14 @@
   when exiting, let the new chained one through.  This avoids the PEP 479
   bug described in issue25782.
 
-- Issue #27278: Fix os.urandom() implementation using getrandom() on Linux.
+- [Security] Issue #27278: Fix os.urandom() implementation using getrandom() on Linux.
   Truncate size to INT_MAX and loop until we collected enough random bytes,
   instead of casting a directly Py_ssize_t to int.
 
 - Issue #26386: Fixed ttk.TreeView selection operations with item id's
   containing spaces.
 
-- Issue #22636: Avoid shell injection problems with
+- [Security] Issue #22636: Avoid shell injection problems with
   ctypes.util.find_library().
 
 - Issue #16182: Fix various functions in the "readline" module to use the
@@ -309,10 +309,10 @@
 Library
 -------
 
-- Issue #26556: Update expat to 2.1.1, fixes CVE-2015-1283.
-
-- Fix TLS stripping vulnerability in smtplib, CVE-2016-0772.  Reported by Team
-  Oststrom
+- [Security] Issue #26556: Update expat to 2.1.1, fixes CVE-2015-1283.
+
+- [Security] Fix TLS stripping vulnerability in smtplib, CVE-2016-0772.
+  Reported by Team Oststrom
 
 - Issue #21386: Implement missing IPv4Address.is_global property.  It was
   documented since 07a5610bae9d.  Initial patch by Roger Luethi.
@@ -336,7 +336,7 @@
 - Issue #21313: Fix the "platform" module to tolerate when sys.version
   contains truncated build information.
 
-- Issue #26839: On Linux, :func:`os.urandom` now calls ``getrandom()`` with
+- [Security] Issue #26839: On Linux, :func:`os.urandom` now calls ``getrandom()`` with
   ``GRND_NONBLOCK`` to fall back on reading ``/dev/urandom`` if the urandom
   entropy pool is not initialized yet. Patch written by Colm Buckley.
 
@@ -444,7 +444,7 @@
 - Issue #24838: tarfile's ustar and gnu formats now correctly calculate name
   and link field limits for multibyte character encodings like utf-8.
 
-- Issue #26657: Fix directory traversal vulnerability with http.server on
+- [Security] Issue #26657: Fix directory traversal vulnerability with http.server on
   Windows.  This fixes a regression that was introduced in 3.3.4rc1 and
   3.4.0rc1.  Based on patch by Philipp Hagemeister.
 
@@ -493,7 +493,7 @@
 - Issue #26560: Avoid potential ValueError in BaseHandler.start_response.
   Initial patch by Peter Inglesby.
 
-- Issue #26313: ssl.py _load_windows_store_certs fails if windows cert store
+- [Security] Issue #26313: ssl.py _load_windows_store_certs fails if windows cert store
   is empty. Patch by Baji.
 
 - Issue #26569: Fix :func:`pyclbr.readmodule` and :func:`pyclbr.readmodule_ex`
@@ -555,7 +555,7 @@
   the connected socket) when verify_request() returns false.  Patch by Aviv
   Palivoda.
 
-- Issue #25939: On Windows open the cert store readonly in ssl.enum_certificates.
+- [Security] Issue #25939: On Windows open the cert store readonly in ssl.enum_certificates.
 
 - Issue #25995: os.walk() no longer uses FDs proportional to the tree depth.
 

-- 
Repository URL: https://hg.python.org/cpython

More information about the Python-checkins mailing list