SUSE-SLE-Module-Python3-15-SP4-2022-2291 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). - Update to 3.10.5: - Core and Builtins - gh-93418: Fixed an assert where an f-string has an equal sign '=' following an expression, but there's no trailing brace. For example, f"{i=". - gh-91924: Fix __ltrace__ debug feature if the stdout encoding is not UTF-8. Patch by Victor Stinner. - gh-93061: Backward jumps after async for loops are no longer given dubious line numbers. - gh-93065: Fix contextvars HAMT implementation to handle iteration over deep trees. - The bug was discovered and fixed by Eli Libman. See MagicStack/immutables#84 for more details. - gh-92311: Fixed a bug where setting frame.f_lineno to jump over a list comprehension could misbehave or crash. - gh-92112: Fix crash triggered by an evil custom mro() on a metaclass. - gh-92036: Fix a crash in subinterpreters related to the garbage collector. When a subinterpreter is deleted, untrack all objects tracked by its GC. To prevent a crash in deallocator functions expecting objects to be tracked by the GC, leak a strong reference to these objects on purpose, so they are never deleted and their deallocator functions are not called. Patch by Victor Stinner. - gh-91421: Fix a potential integer overflow in _Py_DecodeUTF8Ex. - bpo-47212: Raise IndentationError instead of SyntaxError for a bare except with no following indent. Improve SyntaxError locations for an un-parenthesized generator used as arguments. Patch by Matthieu Dartiailh. - bpo-47182: Fix a crash when using a named unicode character like "\N{digit nine}" after the main interpreter has been initialized a second time. - bpo-47117: Fix a crash if we fail to decode characters in interactive mode if the tokenizer buffers are uninitialized. Patch by Pablo Galindo. - bpo-39829: Removed the __len__() call when initializing a list and moved initializing to list_extend. Patch by Jeremiah Pascual. - bpo-46962: Classes and functions that unconditionally declared their docstrings ignoring the --without-doc-strings compilation flag no longer do so. - The classes affected are ctypes.UnionType, pickle.PickleBuffer, testcapi.RecursingInfinitelyError, and types.GenericAlias. - The functions affected are 24 methods in ctypes. - Patch by Oleg Iarygin. - bpo-36819: Fix crashes in built-in encoders with error handlers that return position less or equal than the starting position of non-encodable characters. - Library - gh-93156: Accessing the pathlib.PurePath.parents sequence of an absolute path using negative index values produced incorrect results. - gh-89973: Fix re.error raised in fnmatch if the pattern contains a character range with upper bound lower than lower bound (e.g. [c-a]). Now such ranges are interpreted as empty ranges. - gh-93010: In a very special case, the email package tried to append the nonexistent InvalidHeaderError to the defect list. It should have been InvalidHeaderDefect. - gh-92839: Fixed crash resulting from calling bisect.insort() or bisect.insort_left() with the key argument not equal to None. - gh-91581: utcfromtimestamp() no longer attempts to resolve fold in the pure Python implementation, since the fold is never 1 in UTC. In addition to being slightly faster in the common case, this also prevents some errors when the timestamp is close to datetime.min. Patch by Paul Ganssle. - gh-92530: Fix an issue that occurred after interrupting threading.Condition.notify(). - gh-92049: Forbid pickling constants re._constants.SUCCESS etc. Previously, pickling did not fail, but the result could not be unpickled. - bpo-47029: Always close the read end of the pipe used by multiprocessing.Queue after the last write of buffered data to the write end of the pipe to avoid BrokenPipeError at garbage collection and at multiprocessing.Queue.close() calls. Patch by Géry Ogam. - gh-91401: Provide a fail-safe way to disable subprocess use of vfork() via a private subprocess._USE_VFORK attribute. While there is currently no known need for this, if you find a need please only set it to False. File a CPython issue as to why you needed it and link to that from a comment in your code. This attribute is documented as a footnote in 3.11. - gh-91910: Add missing f prefix to f-strings in error messages from the multiprocessing and asyncio modules. - gh-91810: ElementTree method write() and function tostring() now use the text file's encoding ("UTF-8" if not available) instead of locale encoding in XML declaration when encoding="unicode" is specified. - gh-91832: Add required attribute to argparse.Action repr output. - gh-91700: Compilation of regular expression containing a conditional expression (?(group)...) now raises an appropriate re.error if the group number refers to not defined group. Previously an internal RuntimeError was raised. - gh-91676: Fix unittest.IsolatedAsyncioTestCase to shutdown the per test event loop executor before returning from its run method so that a not yet stopped or garbage collected executor state does not persist beyond the test. - gh-90568: Parsing \N escapes of Unicode Named Character Sequences in a regular expression raises now re.error instead of TypeError. - gh-91595: Fix the comparison of character and integer inside Tools.gdb.libpython.write_repr(). Patch by Yu Liu. - gh-90622: Worker processes for concurrent.futures.ProcessPoolExecutor are no longer spawned on demand (a feature added in 3.9) when the multiprocessing context start method is "fork" as that can lead to deadlocks in the child processes due to a fork happening while threads are running. - gh-91575: Update case-insensitive matching in the re module to the latest Unicode version. - gh-91581: Remove an unhandled error case in the C implementation of calls to datetime.fromtimestamp with no time zone (i.e. getting a local time from an epoch timestamp). This should have no user-facing effect other than giving a possibly more accurate error message when called with timestamps that fall on 10000-01-01 in the local time. Patch by Paul Ganssle. - bpo-47260: Fix os.closerange() potentially being a no-op in a Linux seccomp sandbox. - bpo-39064: zipfile.ZipFile now raises zipfile.BadZipFile instead of ValueError when reading a corrupt zip file in which the central directory offset is negative. - bpo-47151: When subprocess tries to use vfork, it now falls back to fork if vfork returns an error. This allows use in situations where vfork isn't allowed by the OS kernel. - bpo-27929: Fix asyncio.loop.sock_connect() to only resolve names for socket.AF_INET or socket.AF_INET6 families. Resolution may not make sense for other families, like socket.AF_BLUETOOTH and socket.AF_UNIX. - bpo-43323: Fix errors in the email module if the charset itself contains undecodable/unencodable characters. - bpo-47101: hashlib.algorithms_available now lists only algorithms that are provided by activated crypto providers on OpenSSL 3.0. Legacy algorithms are not listed unless the legacy provider has been loaded into the default OSSL context. - bpo-46787: Fix concurrent.futures.ProcessPoolExecutor exception memory leak - bpo-45393: Fix the formatting for await x and not x in the operator precedence table when using the help() system. - bpo-46415: Fix ipaddress.ip_{address,interface,network} raising TypeError instead of ValueError if given invalid tuple as address parameter. - bpo-28249: Set doctest.DocTest.lineno to None when object does not have __doc__. - bpo-45138: Fix a regression in the sqlite3 trace callback where bound parameters were not expanded in the passed statement string. The regression was introduced in Python 3.10 by bpo-40318. Patch by Erlend E. Aasland. - bpo-44493: Add missing terminated NUL in sockaddr_un's length - This was potentially observable when using non-abstract AF_UNIX datagram sockets to processes written in another programming language. - bpo-42627: Fix incorrect parsing of Windows registry proxy settings - bpo-36073: Raise ProgrammingError instead of segfaulting on recursive usage of cursors in sqlite3 converters. Patch by Sergey Fedoseev. - Documentation - gh-86438: Clarify that -W and PYTHONWARNINGS are matched literally and case-insensitively, rather than as regular expressions, in warnings. - gh-92240: Added release dates for "What's New in Python 3.X" for 3.0, 3.1, 3.2, 3.8 and 3.10 - gh-91888: Add a new gh role to the documentation to link to GitHub issues. - gh-91783: Document security issues concerning the use of the function shutil.unpack_archive() - gh-91547: Remove "Undocumented modules" page. - bpo-44347: Clarify the meaning of dirs_exist_ok, a kwarg of shutil.copytree(). - bpo-38668: Update the introduction to documentation for os.path to remove warnings that became irrelevant after the implementations of PEP 383 and PEP 529. - bpo-47138: Pin Jinja to a version compatible with Sphinx version 3.2.1. - bpo-46962: All docstrings in code snippets are now wrapped into PyDoc_STR() to follow the guideline of PEP 7's Documentation Strings paragraph. Patch by Oleg Iarygin. - bpo-26792: Improve the docstrings of runpy.run_module() and runpy.run_path(). Original patch by Andrew Brezovsky. - bpo-40838: Document that inspect.getdoc(), inspect.getmodule(), and inspect.getsourcefile() might return None. - bpo-45790: Adjust inaccurate phrasing in Defining Extension Types: Tutorial about the ob_base field and the macros used to access its contents. - bpo-42340: Document that in some circumstances KeyboardInterrupt may cause the code to enter an inconsistent state. Provided a sample workaround to avoid it if needed. - bpo-41233: Link the errnos referenced in Doc/library/exceptions.rst to their respective section in Doc/library/errno.rst, and vice versa. Previously this was only done for EINTR and InterruptedError. Patch by Yan "yyyyyyyan" Orestes. - bpo-38056: Overhaul the Error Handlers documentation in codecs. - bpo-13553: Document tkinter.Tk args. - Tests - gh-92886: Fixing tests that fail when running with optimizations (-O) in test_imaplib.py. - gh-92670: Skip test_shutil.TestCopy.test_copyfile_nonexistent_dir test on AIX as the test uses a trailing slash to force the OS consider the path as a directory, but on AIX the trailing slash has no effect and is considered as a file. - gh-91904: Fix initialization of PYTHONREGRTEST_UNICODE_GUARD which prevented running regression tests on non-UTF-8 locale. - gh-91607: Fix test_concurrent_futures to test the correct multiprocessing start method context in several cases where the test logic mixed this up. - bpo-47205: Skip test for sched_getaffinity() and sched_setaffinity() error case on FreeBSD. - bpo-47104: Rewrite asyncio.to_thread() tests to use unittest.IsolatedAsyncioTestCase. - bpo-29890: Add tests for ipaddress.IPv4Interface and ipaddress.IPv6Interface construction with tuple arguments. Original patch and tests by louisom. - Tools/Demos - gh-91583: Fix regression in the code generated by Argument Clinic for functions with the defining_class parameter. - Update to 3.10.4: - bpo-46968: Check for the existence of the "sys/auxv.h" header in faulthandler to avoid compilation problems in systems where this header doesn't exist. Patch by Pablo Galindo - bpo-23691: Protect the re.finditer() iterator from re-entering. - bpo-42369: Fix thread safety of zipfile._SharedFile.tell() to avoid a "zipfile.BadZipFile: Bad CRC-32 for file" exception when reading a ZipFile from multiple threads. - bpo-38256: Fix binascii.crc32() when it is compiled to use zlib'c crc32 to work properly on inputs 4+GiB in length instead of returning the wrong result. The workaround prior to this was to always feed the function data in increments smaller than 4GiB or to just call the zlib module function. - bpo-39394: A warning about inline flags not at the start of the regular expression now contains the position of the flag. - bpo-47061: Deprecate the various modules listed by PEP 594: - aifc, asynchat, asyncore, audioop, cgi, cgitb, chunk, crypt, imghdr, msilib, nntplib, nis, ossaudiodev, pipes, smtpd, sndhdr, spwd, sunau, telnetlib, uu, xdrlib - bpo-2604: Fix bug where doctests using globals would fail when run multiple times. - bpo-45997: Fix asyncio.Semaphore re-aquiring FIFO order. - bpo-47022: The asynchat, asyncore and smtpd modules have been deprecated since at least Python 3.6. Their documentation and deprecation warnings and have now been updated to note they will removed in Python 3.12 (PEP 594). - bpo-46421: Fix a unittest issue where if the command was invoked as python -m unittest and the filename(s) began with a dot (.), a ValueError is returned. - bpo-40296: Fix supporting generic aliases in pydoc. - Update to 3.10.3: - bpo-46940: Avoid overriding AttributeError metadata information for nested attribute access calls. Patch by Pablo Galindo. - bpo-46852: Rename the private undocumented float.__set_format__() method to float.__setformat__() to fix a typo introduced in Python 3.7. The method is only used by test_float. Patch by Victor Stinner. - bpo-46794: Bump up the libexpat version into 2.4.6 - bpo-46820: Fix parsing a numeric literal immediately (without spaces) followed by "not in" keywords, like in 1not in x. Now the parser only emits a warning, not a syntax error. - bpo-46762: Fix an assert failure in debug builds when a '<', '>', or '=' is the last character in an f-string that's missing a closing right brace. - bpo-46724: Make sure that all backwards jumps use the JUMP_ABSOLUTE instruction, rather than JUMP_FORWARD with an argument of (2**32)+offset. - bpo-46732: Correct the docstring for the __bool__() method. Patch by Jelle Zijlstra. - bpo-46707: Avoid potential exponential backtracking when producing some syntax errors involving lots of brackets. Patch by Pablo Galindo. - bpo-40479: Add a missing call to va_end() in Modules/_hashopenssl.c. - bpo-46615: When iterating over sets internally in setobject.c, acquire strong references to the resulting items from the set. This prevents crashes in corner-cases of various set operations where the set gets mutated. - bpo-45773: Remove two invalid "peephole" optimizations from the bytecode compiler. - bpo-43721: Fix docstrings of getter, setter, and deleter to clarify that they create a new copy of the property. - bpo-46503: Fix an assert when parsing some invalid N escape sequences in f-strings. - bpo-46417: Fix a race condition on setting a type __bases__ attribute: the internal function add_subclass() now gets the PyTypeObject.tp_subclasses member after calling PyWeakref_NewRef() which can trigger a garbage collection which can indirectly modify PyTypeObject.tp_subclasses. Patch by Victor Stinner. - bpo-46383: Fix invalid signature of _zoneinfo's module_free function to resolve a crash on wasm32-emscripten platform. - bpo-46070: Py_EndInterpreter() now explicitly untracks all objects currently tracked by the GC. Previously, if an object was used later by another interpreter, calling PyObject_GC_UnTrack() on the object crashed if the previous or the next object of the PyGC_Head structure became a dangling pointer. Patch by Victor Stinner. - bpo-46339: Fix a crash in the parser when retrieving the error text for multi-line f-strings expressions that do not start in the first line of the string. Patch by Pablo Galindo - bpo-46240: Correct the error message for unclosed parentheses when the tokenizer doesn't reach the end of the source when the error is reported. Patch by Pablo Galindo - bpo-46091: Correctly calculate indentation levels for lines with whitespace character that are ended by line continuation characters. Patch by Pablo Galindo - bpo-43253: Fix a crash when closing transports where the underlying socket handle is already invalid on the Proactor event loop. - bpo-47004: Apply bugfixes from importlib_metadata 4.11.3, including bugfix for EntryPoint.extras, which was returning match objects and not the extras strings. - bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4) - bpo-46968: faulthandler: On Linux 5.14 and newer, dynamically determine size of signal handler stack size CPython allocates using getauxval(AT_MINSIGSTKSZ). This changes allows for Python extension's request to Linux kernel to use AMX_TILE instruction set on Sapphire Rapids Xeon processor to succeed, unblocking use of the ISA in frameworks. - bpo-46955: Expose asyncio.base_events.Server as asyncio.Server. Patch by Stefan Zabka. - bpo-23325: The signal module no longer assumes that SIG_IGN and SIG_DFL are small int singletons. - bpo-46932: Update bundled libexpat to 2.4.7 - bpo-25707: Fixed a file leak in xml.etree.ElementTree.iterparse() when the iterator is not exhausted. Patch by Jacob Walls. - bpo-44886: Inherit asyncio proactor datagram transport from asyncio.DatagramTransport. - bpo-46827: Support UDP sockets in asyncio.loop.sock_connect() for selector-based event loops. Patch by Thomas Grainger. - bpo-46811: Make test suite support Expat >=2.4.5 - bpo-46252: Raise TypeError if ssl.SSLSocket is passed to transport-based APIs. - bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python. - bpo-39327: shutil.rmtree() can now work with VirtualBox shared folders when running from the guest operating-system. - bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo. - bpo-46643: In typing.get_type_hints(), support evaluating stringified ParamSpecArgs and ParamSpecKwargs annotations. Patch by Gregory Beauregard. - bpo-45863: When the tarfile module creates a pax format archive, it will put an integer representation of timestamps in the ustar header (if possible) for the benefit of older unarchivers, in addition to the existing full-precision timestamps in the pax extended header. - bpo-46676: Make typing.ParamSpec args and kwargs equal to themselves. Patch by Gregory Beauregard. - bpo-46672: Fix NameError in asyncio.gather() when initial type check fails. - bpo-46655: In typing.get_type_hints(), support evaluating bare stringified TypeAlias annotations. Patch by Gregory Beauregard. - bpo-45948: Fixed a discrepancy in the C implementation of the xml.etree.ElementTree module. Now, instantiating an xml.etree.ElementTree.XMLParser with a target=None keyword provides a default xml.etree.ElementTree.TreeBuilder target as the Python implementation does. - bpo-46521: Fix a bug in the codeop module that was incorrectly identifying invalid code involving string quotes as valid code. - bpo-46581: Brings ParamSpec propagation for GenericAlias in line with Concatenate (and others). - bpo-46591: Make the IDLE doc URL on the About IDLE dialog clickable. - bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4 - bpo-46487: Add the get_write_buffer_limits method to asyncio.transports.WriteTransport and to the SSL transport. - bpo-45173: Note the configparser deprecations will be removed in Python 3.12. - bpo-46539: In typing.get_type_hints(), support evaluating stringified ClassVar and Final annotations inside Annotated. Patch by Gregory Beauregard. - bpo-46491: Allow typing.Annotated to wrap typing.Final and typing.ClassVar. Patch by Gregory Beauregard. - bpo-46436: Fix command-line option -d/--directory in module http.server which is ignored when combined with command-line option --cgi. Patch by Géry Ogam. - bpo-41403: Make mock.patch() raise a TypeError with a relevant error message on invalid arg. Previously it allowed a cryptic AttributeError to escape. - bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace. - bpo-46469: asyncio generic classes now return types.GenericAlias in __class_getitem__ instead of the same class. - bpo-46434: pdb now gracefully handles help when __doc__ is missing, for example when run with pregenerated optimized .pyc files. - bpo-46333: The __eq__() and __hash__() methods of typing.ForwardRef now honor the module parameter of typing.ForwardRef. Forward references from different modules are now differentiated. - bpo-46246: Add missing __slots__ to importlib.metadata.DeprecatedList. Patch by Arie Bovenberg. - bpo-46266: Improve day constants in calendar. - Now all constants (MONDAY ... SUNDAY) are documented, tested, and added to __all__. - bpo-46232: The ssl module now handles certificates with bit strings in DN correctly. - bpo-43118: Fix a bug in inspect.signature() that was causing it to fail on some subclasses of classes with a __text_signature__ referencing module globals. Patch by Weipeng Hong. - bpo-26552: Fixed case where failing asyncio.ensure_future() did not close the coroutine. Patch by Kumar Aditya. - bpo-21987: Fix an issue with tarfile.TarFile.getmember() getting a directory name with a trailing slash. - bpo-20392: Fix inconsistency with uppercase file extensions in MimeTypes.guess_type(). Patch by Kumar Aditya. - bpo-46080: Fix exception in argparse help text generation if a argparse.BooleanOptionalAction argument's default is argparse.SUPPRESS and it has help specified. Patch by Felix Fontein. - bpo-44439: Fix .write() method of a member file in ZipFile, when the input data is an object that supports the buffer protocol, the file length may be wrong. - bpo-45703: When a namespace package is imported before another module from the same namespace is created/installed in a different sys.path location while the program is running, calling the importlib.invalidate_caches() function will now also guarantee the new module is noticed. - bpo-24959: Fix bug where unittest sometimes drops frames from tracebacks of exceptions raised in tests. - bpo-44791: Fix substitution of ParamSpec in Concatenate with different parameter expressions. Substitution with a list of types returns now a tuple of types. Substitution with Concatenate returns now a Concatenate with concatenated lists of arguments. - bpo-14156: argparse.FileType now supports an argument of '-' in binary mode, returning the .buffer attribute of sys.stdin/sys.stdout as appropriate. Modes including 'x' and 'a' are treated equivalently to 'w' when argument is '-'. Patch contributed by Josh Rosenberg - bpo-46463: Fixes escape4chm.py script used when building the CHM documentation file - bpo-46913: Fix test_faulthandler.test_sigfpe() if Python is built with undefined behavior sanitizer (UBSAN): disable UBSAN on the faulthandler_sigfpe() function. Patch by Victor Stinner. - bpo-46708: Prevent default asyncio event loop policy modification warning after test_asyncio execution. - bpo-46678: The function make_legacy_pyc in Lib/test/support/import_helper.py no longer fails when PYTHONPYCACHEPREFIX is set to a directory on a different device from where tempfiles are stored. - bpo-46616: Ensures test_importlib.test_windows cleans up registry keys after completion. - bpo-44359: test_ftplib now silently ignores socket errors to prevent logging unhandled threading exceptions. Patch by Victor Stinner. - bpo-46542: Fix a Python crash in test_lib2to3 when using Python built in debug mode: limit the recursion limit. Patch by Victor Stinner. - bpo-46576: test_peg_generator now disables compiler optimization when testing compilation of its own C extensions to significantly speed up the testing on non-debug builds of CPython. - bpo-46542: Fix test_json tests checking for RecursionError: modify these tests to use support.infinite_recursion(). Patch by Victor Stinner. - bpo-13886: Skip test_builtin PTY tests on non-ASCII characters if the readline module is loaded. The readline module changes input() behavior, but test_builtin is not intented to test the readline module. Patch by Victor Stinner. - bpo-38472: Fix GCC detection in setup.py when cross-compiling. The C compiler is now run with LC_ALL=C. Previously, the detection failed with a German locale. - bpo-46513: configure no longer uses AC_C_CHAR_UNSIGNED macro and pyconfig.h no longer defines reserved symbol __CHAR_UNSIGNED__. - bpo-45296: Clarify close, quit, and exit in IDLE. In the File menu, 'Close' and 'Exit' are now 'Close Window' (the current one) and 'Exit' is now 'Exit IDLE' (by closing all windows). In Shell, 'quit()' and 'exit()' mean 'close Shell'. If there are no other windows, this also exits IDLE. - bpo-45447: Apply IDLE syntax highlighting to pyi files. Patch by Alex Waygood and Terry Jan Reedy. - bpo-46433: The internal function _PyType_GetModuleByDef now correctly handles inheritance patterns involving static types. - bpo-14916: Fixed bug in the tokenizer that prevented PyRun_InteractiveOne from parsing from the provided FD. libpython3_10-1_0-3.10.5-150400.4.7.1.x86_64.rpm python310-3.10.5-150400.4.7.1.src.rpm python310-3.10.5-150400.4.7.1.x86_64.rpm python310-base-3.10.5-150400.4.7.1.x86_64.rpm python310-core-3.10.5-150400.4.7.1.src.rpm python310-curses-3.10.5-150400.4.7.1.x86_64.rpm python310-dbm-3.10.5-150400.4.7.1.x86_64.rpm python310-devel-3.10.5-150400.4.7.1.x86_64.rpm python310-idle-3.10.5-150400.4.7.1.x86_64.rpm python310-tk-3.10.5-150400.4.7.1.x86_64.rpm python310-tools-3.10.5-150400.4.7.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2022-3302 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This feature update for python310-pip and python-rpm-macros provides: python310-pip: Upgrade from version 20.2.4 to version 22.0.4 (jsc#SLE-24539) - Adjust SPEC file to generate python310 module only - Avoid cycle: BuildRequire ca-certificates only in tests - This version is not compatible with Python 3.6 and thus not suitable for SUSE Linux Enterprise 15. - Drop the doctype check, that presented a warning for index pages that use non-compliant HTML 5. - Print the exception via rich.traceback, when running with `--debug`. - Only calculate topological installation order, for packages that are going to be installed/upgraded. * This error occurred when determining the installation order for a very specific combination of upgrading of already installed packages, change of dependencies and fetching some packages from a package index. This combination was especially common in Read the Docs' builds. - Use html.parser by default, instead of falling back to html5lib when --use-deprecated=html5lib is not passed. - Clarify that using per-requirement overrides disables the usage of wheels. - Instead of failing on index pages that use non-compliant HTML 5, print a deprecation warning and fall back to html5lib-based parsing for now. This simplifies the migration for non-compliant index pages, by letting such indexes function with a warning. - Accept lowercase <!doctype html> on index pages. - Properly handle links parsed by html5lib, when using --use-deprecated=html5lib. - Changed PackageFinder to parse HTML documents using the stdlib :class:`html.parser.HTMLParser` class instead of the html5lib package. - For now, the deprecated html5lib code remains and can be used with the --use-deprecated=html5lib command line option. However, it will be removed in a future pip release. - Completely replace :pypi:`tox` in our development workflow, with :pypi:`nox`. - Deprecate alternative progress bar styles, leaving only on and off as available choices. - Drop support for Python 3.6. - Disable location mismatch warnings on Python versions prior to 3.10. * These warnings were helping identify potential issues as part of the sysconfig -> distutils transition, and we no longer need to rely on reports from older Python versions for information on the transition. - Utilize rich for presenting pip's default download progress bar. - Present a better error message when an invalid wheel file is encountered, providing more context where the invalid wheel file is. - Documents the --require-virtualenv flag for pip install. - pip install <tab> autocompletes paths. - Allow Python distributors to opt-out from or opt-in to the sysconfig installation scheme backend by setting sysconfig._PIP_USE_SYSCONFIG to True or False. - Make it possible to deselect tests requiring cryptography package on systems where it cannot be installed. - Start using Rich for presenting error messages in a consistent format. - Improve presentation of errors from subprocesses. - Forward pip's verbosity configuration to VCS tools to control their output accordingly. - Optimize installation order calculation to improve performance when installing requirements that form a complex dependency graph with a large amount of edges. - When a package is requested by the user for upgrade, correctly identify that the extra-ed variant of that same package depended by another user-requested package is requesting the same package, and upgrade it accordingly. - Prevent pip from installing yanked releases unless explicitly pinned via the `==` or `===` operators. - Stop backtracking on build failures, by instead surfacing them to the user and aborting immediately. This behaviour provides more immediate feedback when a package cannot be built due to missing build dependencies or platform incompatibility. - Silence Value for <location> does not match warning caused by an erroneous patch in Slackware-distributed Python 3.9. - Fix an issue where pip did not consider dependencies with and without extras to be equal - Always refuse installing or building projects that have no ``pyproject.toml`` nor ``setup.py``. - Tweak running-as-root detection, to check ``os.getuid`` if it exists, on Unix-y and non-Linux/non-MacOS machines. - When installing projects with a ``pyproject.toml`` in editable mode, and the build backend does not support :pep:`660`, prepare metadata using ``prepare_metadata_for_build_wheel`` instead of ``setup.py egg_info``. Also, refuse installing projects that only have a ``setup.cfg`` and no ``setup.py`` nor ``pyproject.toml``. These restore the pre-21.3 behaviour. - Restore compatibility of where configuration files are loaded from on MacOS - Upgrade pep517 to 0.12.0 - Improve deprecation warning regarding the copying of source trees when installing from a local directory. - Suppress location mismatch warnings when pip is invoked from a Python source tree, so ``ensurepip`` does not emit warnings on CPython ``make install``. - On Python 3.10 or later, the installation scheme backend has been changed to use ``sysconfig``. This is to anticipate the deprecation of ``distutils`` in Python 3.10, and its scheduled removal in 3.12. For compatibility considerations, pip installations running on Python 3.9 or lower will continue to use ``distutils``. - Remove the ``--build-dir`` option and aliases, one last time. - In-tree builds are now the default. ``--use-feature=in-tree-build`` is now ignored. ``--use-deprecated=out-of-tree-build`` may be used temporarily to ease the transition. - Un-deprecate source distribution re-installation behaviour. - Replace vendored appdirs with platformdirs. - Support `PEP 610 <https://www.python.org/dev/peps/pep-0610/>`_ to detect editable installs in ``pip freeze`` and ``pip list``. The ``pip list`` column output has a new ``Editable project location`` column, and the JSON output has a new ``editable_project_location`` field. - ``pip freeze`` will now always fallback to reporting the editable project location when it encounters a VCS error while analyzing an editable requirement. Before, it sometimes reported the requirement as non-editable. - ``pip show`` now sorts ``Requires`` and ``Required-By`` alphabetically. - Do not raise error when there are no files to remove with ``pip cache purge/remove``. Instead log a warning and continue (to log that we removed 0 files). - When backtracking during dependency resolution, prefer the dependencies which are involved in the most recent conflict. This can significantly reduce the amount of backtracking required. - Cache requirement objects, to improve performance reducing reparses of requirement strings. - Support editable installs for projects that have a ``pyproject.toml`` and use a build backend that supports :pep:`660`. - When a revision is specified in a Git URL, use git's partial clone feature to speed up source retrieval. - Add a ``--debug`` flag, to enable a mode that doesn't log errors and propagates them to the top level instead. This is primarily to aid with debugging pip's crashes. - If a host is explicitly specified as trusted by the user (via the --trusted-host option), cache HTTP responses from it in addition to HTTPS ones. - Present a better error message, when a ``file:`` URL is not found. - Fix the auth credential cache to allow for the case in which the index url contains the username, but the password comes from an external source, such as keyring. - Fix double unescape of HTML ``data-requires-python`` and ``data-yanked`` attributes. - New resolver: Fixes depth ordering of packages during resolution, e.g. a dependency 2 levels deep will be ordered before a dependency 3 levels deep. python-rpm-macros: Update from version 20220106.80d3756 to version 20220809.cf8a7b8 (bsc#1201041) - Pass `--ignore-installed` to `pip install` in %pyproject_install - restore end-of-line in alternative scriptlets - make python_flavored_alternatives less verbose - Move install of libalts from sciptlets to python_clone -a - hard-code %py_ver - print proper error on missing python interpreter - Update compile-macros.sh - Create python_flavored_alternatives and use for testing - Switch primary_interpreter from python38 to python310 - Avoid bashism in %() - Fix flavor executable substitution - Keep python38 as primary python3 - Add python310 to the buildset - Move python39 to the primary place in %pythons - Disable python36 flavor in Factory buildset - Add python310 flavor macros to compile set python310-pip-22.0.4-150400.3.3.1.noarch.rpm python310-pip-22.0.4-150400.3.3.1.src.rpm SUSE-SLE-Module-Python3-15-SP4-2022-3473 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: Updated to version 3.10.7: - CVE-2020-10735: Fixed DoS due to missing limit of amount of digits when converting text to int (bsc#1203125). - CVE-2021-28861: Fixed an open redirect in the http server when an URI path starts with // (bsc#1202624). libpython3_10-1_0-3.10.7-150400.4.10.1.x86_64.rpm python310-3.10.7-150400.4.10.1.src.rpm python310-3.10.7-150400.4.10.1.x86_64.rpm python310-base-3.10.7-150400.4.10.1.x86_64.rpm python310-core-3.10.7-150400.4.10.1.src.rpm python310-curses-3.10.7-150400.4.10.1.x86_64.rpm python310-dbm-3.10.7-150400.4.10.1.x86_64.rpm python310-devel-3.10.7-150400.4.10.1.x86_64.rpm python310-idle-3.10.7-150400.4.10.1.x86_64.rpm python310-tk-3.10.7-150400.4.10.1.x86_64.rpm python310-tools-3.10.7-150400.4.10.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2022-4004 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: Security fixes: - CVE-2022-42919: Fixed local privilege escalation via the multiprocessing forkserver start method (bsc#1204886). - CVE-2022-45061: Fixed a quadratic IDNA decoding time (bsc#1205244). Other fixes: - allow building of documentation with the latest Sphinx 5.3.0 (gh#python/cpython#98366). - Update to 3.10.8: - Fix multiplying a list by an integer (list *= int): detect the integer overflow when the new allocated length is close to the maximum size. - Fix a shell code injection vulnerability in the get-remote-certificate.py example script. The script no longer uses a shell to run openssl commands. (originally filed as CVE-2022-37460, later withdrawn) - Fix command line parsing: reject -X int_max_str_digits option with no value (invalid) when the PYTHONINTMAXSTRDIGITS environment variable is set to a valid limit. - When ValueError is raised if an integer is larger than the limit, mention the sys.set_int_max_str_digits() function in the error message. - The deprecated mailcap module now refuses to inject unsafe text (filenames, MIME types, parameters) into shell commands. Instead of using such text, it will warn and act as if a match was not found (or for test commands, as if the test failed). - os.sched_yield() now release the GIL while calling sched_yield(2). - Bugfix: PyFunction_GetAnnotations() should return a borrowed reference. It was returning a new reference. - Fixed a missing incref/decref pair in Exception.__setstate__(). - Fix overly-broad source position information for chained comparisons used as branching conditions. - Fix undefined behaviour in _testcapimodule.c. - At Python exit, sometimes a thread holding the GIL can wait forever for a thread (usually a daemon thread) which requested to drop the GIL, whereas the thread already exited. To fix the race condition, the thread which requested the GIL drop now resets its request before exiting. - Fix a possible assertion failure, fatal error, or SystemError if a line tracing event raises an exception while opcode tracing is enabled. - Fix undefined behaviour in C code of null pointer arithmetic. - Do not expose KeyWrapper in _functools. - When loading a file with invalid UTF-8 inside a multi-line string, a correct SyntaxError is emitted. - Disable incorrect pickling of the C implemented classmethod descriptors. - Fix AttributeError missing name and obj attributes in . object.__getattribute__() bpo-42316: Document some places . where an assignment expression needs parentheses . - Wrap network errors consistently in urllib FTP support, so the test suite doesn’t fail when a network is available but the public internet is not reachable. - Fixes AttributeError when subprocess.check_output() is used with argument input=None and either of the arguments encoding or errors are used. - Avoid spurious tracebacks from asyncio when default executor cleanup is delayed until after the event loop is closed (e.g. as the result of a keyboard interrupt). - Avoid a crash in the C version of asyncio.Future.remove_done_callback() when an evil argument is passed. - Remove tokenize.NL check from tabnanny. - Make Semaphore run faster. - Fix generation of the default name of tkinter.Checkbutton. Previously, checkbuttons in different parent widgets could have the same short name and share the same state if arguments “name” and “variable” are not specified. Now they are globally unique. - Update bundled libexpat to 2.4.9 - Fix race condition in asyncio where process_exited() called before the pipe_data_received() leading to inconsistent output. - Fixed check in multiprocessing.resource_tracker that guarantees that the length of a write to a pipe is not greater than PIPE_BUF. - Corrected type annotation for dataclass attribute pstats.FunctionProfile.ncalls to be str. - Fix the faulthandler implementation of faulthandler.register(signal, chain=True) if the sigaction() function is not available: don’t call the previous signal handler if it’s NULL. - In inspect, fix overeager replacement of “typing.” in formatting annotations. - Fix asyncio.streams.StreamReaderProtocol to keep a strong reference to the created task, so that it’s not garbage collected - Fix handling compiler warnings (SyntaxWarning and DeprecationWarning) in codeop.compile_command() when checking for incomplete input. Previously it emitted warnings and raised a SyntaxError. Now it always returns None for incomplete input without emitting any warnings. - Fixed flickering of the turtle window when the tracer is turned off. - Allow asyncio.StreamWriter.drain() to be awaited concurrently by multiple tasks. - Fix broken asyncio.Semaphore when acquire is cancelled. - Fix ast.unparse() when ImportFrom.level is None - Improve performance of urllib.request.getproxies_environment when there are many environment variables - Fix ! in c domain ref target syntax via a conf.py patch, so it works as intended to disable ref target resolution. - Clarified the conflicting advice given in the ast documentation about ast.literal_eval() being “safe” for use on untrusted input while at the same time warning that it can crash the process. The latter statement is true and is deemed unfixable without a large amount of work unsuitable for a bugfix. So we keep the warning and no longer claim that literal_eval is safe. - Update tutorial introduction output to use 3.10+ SyntaxError invalid range. libpython3_10-1_0-3.10.8-150400.4.15.1.x86_64.rpm python310-3.10.8-150400.4.15.1.src.rpm python310-3.10.8-150400.4.15.1.x86_64.rpm python310-base-3.10.8-150400.4.15.1.x86_64.rpm python310-core-3.10.8-150400.4.15.1.src.rpm python310-curses-3.10.8-150400.4.15.1.x86_64.rpm python310-dbm-3.10.8-150400.4.15.1.x86_64.rpm python310-devel-3.10.8-150400.4.15.1.x86_64.rpm python310-idle-3.10.8-150400.4.15.1.x86_64.rpm python310-tk-3.10.8-150400.4.15.1.x86_64.rpm python310-tools-3.10.8-150400.4.15.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-91 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310-setuptools fixes the following issues: - CVE-2022-40897: Fixed an excessive CPU usage that could be triggered by fetching a malicious HTML document (bsc#1206667). python310-setuptools-57.4.0-150400.4.3.1.noarch.rpm python310-setuptools-57.4.0-150400.4.3.1.src.rpm SUSE-SLE-Module-Python3-15-SP4-2023-748 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: - CVE-2023-24329: Fixed blocklist bypass via the urllib.parse component when supplying a URL that starts with blank characters (bsc#1208471). Update to 3.10.10: - Add provides for readline and sqlite3 to the main Python package. - Disable NIS for new products, it's deprecated and gets removed Update to 3.10.9: - python -m http.server no longer allows terminal control characters sent within a garbage request to be printed to the stderr server lo This is done by changing the http.server BaseHTTPRequestHandler .log_message method to replace control characters with a \xHH hex escape before printin - Avoid publishing list of active per-interpreter audit hooks via the gc module - The IDNA codec decoder used on DNS hostnames by socket or asyncio related name resolution functions no longer involves a quadratic algorithm. This prevents a potential CPU denial of service if an out-of-spec excessive length hostname involving bidirectional characters were decoded. Some protocols such as urllib http 3xx redirects potentially allow for an attacker to supply such a name. - Update bundled libexpat to 2.5.0 - Port XKCP’s fix for the buffer overflows in SHA-3 (CVE-2022-37454). - On Linux the multiprocessing module returns to using filesystem backed unix domain sockets for communication with the forkserver process instead of the Linux abstract socket namespace. Only code that chooses to use the “forkserver” start method is affected Abstract sockets have no permissions and could allow any user on the system in the same network namespace (often the whole system) to inject code into the multiprocessing forkserver process. This was a potential privilege escalation. Filesystem based socket permissions restrict this to the forkserver process user as was the default in Python 3.8 and earlier This prevents Linux CVE-2022-42919 - Fix a reference bug in _imp.create_builtin() after the creation of the first sub-interpreter for modules builtins and sys. Patch by Victor Stinner. - Fixed a bug that was causing a buffer overflow if the tokenizer copies a line missing the newline caracter from a file that is as long as the available tokenizer buffer. Patch by Pablo galindo - Update faulthandler to emit an error message with the proper unexpected signal number. Patch by Dong-hee Na. - Fix subscription of types.GenericAlias instances containing bare generic types: for example tuple[A, T][int], where A is a generic type, and T is a type variable. - Fix detection of MAC addresses for uuid on certain OSs. Patch by Chaim Sanders - Print exception class name instead of its string representation when raising errors from ctypes calls. - Allow pdb to locate source for frozen modules in the standard library. - Raise ValueError instead of SystemError when methods of uninitialized io.IncrementalNewlineDecoder objects are called. Patch by Oren Milman. - Fix a possible assertion failure in io.FileIO when the opener returns an invalid file descriptor. - Also escape s in the http.server BaseHTTPRequestHandler.log_message so that it is technically possible to parse the line and reconstruct what the original data was. Without this a xHH is ambiguious as to if it is a hex replacement we put in or the characters r”x” came through in the original request line. - asyncio.get_event_loop() now only emits a deprecation warning when a new event loop was created implicitly. It no longer emits a deprecation warning if the current event loop was set. - Fix bug when calling trace.CoverageResults with valid infile. - Fix a bug in handling class cleanups in unittest.TestCase. Now addClassCleanup() uses separate lists for different TestCase subclasses, and doClassCleanups() only cleans up the particular class. - Release the GIL when calling termios APIs to avoid blocking threads. - Fix ast.increment_lineno() to also cover ast.TypeIgnore when changing line numbers. - Fixed bug where inspect.signature() reported incorrect arguments for decorated methods. - Fix SystemError in ctypes when exception was not set during __initsubclass__. - Fix statistics.NormalDist pickle with 0 and 1 protocols. - Update the bundled copy of pip to version 22.3.1. - Apply bugfixes from importlib_metadata 4.11.4, namely: In PathDistribution._name_from_stem, avoid including parts of the extension in the result. In PathDistribution._normalized_name, ensure names loaded from the stem of the filename are also normalized, ensuring duplicate entry points by packages varying only by non-normalized name are hidden. - Clean up refleak on failed module initialisation in _zoneinfo - Clean up refleaks on failed module initialisation in in _pickle - Clean up refleak on failed module initialisation in _io. - Fix memory leak in math.dist() when both points don’t have the same dimension. Patch by Kumar Aditya. - Fix argument typechecks in _overlapped.WSAConnect() and _overlapped.Overlapped.WSASendTo() functions. - Fix internal error in the re module which in very rare circumstances prevented compilation of a regular expression containing a conditional expression without the “else” branch. - Fix asyncio.StreamWriter.drain() to call protocol.connection_lost callback only once on Windows. - Add a mutex to unittest.mock.NonCallableMock to protect concurrent access to mock attributes. - Fix hang on Windows in subprocess.wait_closed() in asyncio with ProactorEventLoop. Patch by Kumar Aditya. - Fix infinite loop in unittest when a self-referencing chained exception is raised - tkinter.Text.count() raises now an exception for options starting with “-” instead of silently ignoring them. - On uname_result, restored expectation that _fields and _asdict would include all six properties including processor. - Update the bundled copies of pip and setuptools to versions 22.3 and 65.5.0 respectively. - Fix bug in urllib.parse.urlparse() that causes certain port numbers containing whitespace, underscores, plus and minus signs, or non-ASCII digits to be incorrectly accepted. - Allow venv to pass along PYTHON* variables to ensurepip and pip when they do not impact path resolution - On macOS, fix a crash in syslog.syslog() in multi-threaded applications. On macOS, the libc syslog() function is not thread-safe, so syslog.syslog() no longer releases the GIL to call it. Patch by Victor Stinner. - Allow BUILTINS to be a valid field name for frozen dataclasses. - Make sure patch.dict() can be applied on async functions. - To avoid apparent memory leaks when asyncio.open_connection() raises, break reference cycles generated by local exception and future instances (which has exception instance as its member var). Patch by Dong Uk, Kang. - Prevent error when activating venv in nested fish instances. - Restrict use of sockets instead of pipes for stdin of subprocesses created by asyncio to AIX platform only. - shutil.copytree() now applies the ignore_dangling_symlinks argument recursively. - Fix IndexError in argparse.ArgumentParser when a store_true action is given an explicit argument. - Document that calling variadic functions with ctypes requires special care on macOS/arm64 (and possibly other platforms). - Skip test_normalization() of test_unicodedata if it fails to download NormalizationTest.txt file from pythontest.net. Patch by Victor Stinner. - Some C API tests were moved into the new Lib/test/test_capi/ directory. - Fix -Wimplicit-int, -Wstrict-prototypes, and -Wimplicit-function-declaration compiler warnings in configure checks. - Fix -Wimplicit-int compiler warning in configure check for PTHREAD_SCOPE_SYSTEM. - Specify the full path to the source location for make docclean (needed for cross-builds). - Fix NO_MISALIGNED_ACCESSES being not defined for the SHA3 extension when HAVE_ALIGNED_REQUIRED is set. Allowing builds on hardware that unaligned memory accesses are not allowed. - Fix handling of module docstrings in Tools/i18n/pygettext.py. - Add invalid-json.patch fixing invalid JSON in Doc/howto/logging-cookbook.rst (somehow similar to gh#python/cpython#102582). libpython3_10-1_0-3.10.10-150400.4.22.1.x86_64.rpm python310-3.10.10-150400.4.22.1.src.rpm python310-3.10.10-150400.4.22.1.x86_64.rpm python310-base-3.10.10-150400.4.22.1.x86_64.rpm python310-core-3.10.10-150400.4.22.1.src.rpm python310-curses-3.10.10-150400.4.22.1.x86_64.rpm python310-dbm-3.10.10-150400.4.22.1.x86_64.rpm python310-devel-3.10.10-150400.4.22.1.x86_64.rpm python310-idle-3.10.10-150400.4.22.1.x86_64.rpm python310-tk-3.10.10-150400.4.22.1.x86_64.rpm python310-tools-3.10.10-150400.4.22.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2192 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This release of python311, python311-pip, python311-setuptools adds the following feature: - Add Python-3.11 to SLE-15-SP4 Python Module (jsc#PED-68, jsc#PED-2634) libpython3_11-1_0-3.11.2-150400.9.5.6.x86_64.rpm python-pip-22.3.1-150400.17.3.1.src.rpm python-setuptools-67.7.2-150400.3.6.1.src.rpm python311-3.11.2-150400.9.5.3.src.rpm python311-3.11.2-150400.9.5.3.x86_64.rpm python311-base-3.11.2-150400.9.5.6.x86_64.rpm python311-core-3.11.2-150400.9.5.6.src.rpm python311-curses-3.11.2-150400.9.5.3.x86_64.rpm python311-dbm-3.11.2-150400.9.5.3.x86_64.rpm python311-devel-3.11.2-150400.9.5.6.x86_64.rpm python311-doc-3.11.2-150400.9.5.9.x86_64.rpm python311-doc-devhelp-3.11.2-150400.9.5.9.x86_64.rpm python311-documentation-3.11.2-150400.9.5.9.src.rpm python311-idle-3.11.2-150400.9.5.3.x86_64.rpm python311-pip-22.3.1-150400.17.3.1.noarch.rpm python311-setuptools-67.7.2-150400.3.6.1.noarch.rpm python311-tk-3.11.2-150400.9.5.3.x86_64.rpm python311-tools-3.11.2-150400.9.5.6.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2114 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310-setuptools fixes the following issues: - Update to 67.6.1 - Support of pyproject.toml (jsc#PED-3765) python310-setuptools-67.6.1-150400.4.6.1.noarch.rpm python310-setuptools-67.6.1-150400.4.6.1.src.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2463 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: - CVE-2007-4559: Fixed filter for tarfile.extractall (bsc#1203750). libpython3_10-1_0-3.10.11-150400.4.25.1.x86_64.rpm python310-3.10.11-150400.4.25.1.src.rpm python310-3.10.11-150400.4.25.1.x86_64.rpm python310-base-3.10.11-150400.4.25.1.x86_64.rpm python310-core-3.10.11-150400.4.25.1.src.rpm python310-curses-3.10.11-150400.4.25.1.x86_64.rpm python310-dbm-3.10.11-150400.4.25.1.x86_64.rpm python310-devel-3.10.11-150400.4.25.1.x86_64.rpm python310-idle-3.10.11-150400.4.25.1.x86_64.rpm python310-tk-3.10.11-150400.4.25.1.x86_64.rpm python310-tools-3.10.11-150400.4.25.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2827 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) libxml2-python-2.9.14-150400.5.19.1.src.rpm python-extras-1.0.0-150400.12.3.1.src.rpm python311-extras-1.0.0-150400.12.3.1.noarch.rpm python311-libxml2-2.9.14-150400.5.19.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2778 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python311 fixes the following issues: - CVE-2007-4559: Fixed filter for tarfile.extractall (bsc#1203750). libpython3_11-1_0-3.11.3-150400.9.12.1.x86_64.rpm python311-3.11.3-150400.9.12.1.src.rpm python311-3.11.3-150400.9.12.1.x86_64.rpm python311-base-3.11.3-150400.9.12.1.x86_64.rpm python311-core-3.11.3-150400.9.12.1.src.rpm python311-curses-3.11.3-150400.9.12.1.x86_64.rpm python311-dbm-3.11.3-150400.9.12.1.x86_64.rpm python311-devel-3.11.3-150400.9.12.1.x86_64.rpm python311-doc-3.11.3-150400.9.12.1.x86_64.rpm python311-doc-devhelp-3.11.3-150400.9.12.1.x86_64.rpm python311-documentation-3.11.3-150400.9.12.1.src.rpm python311-idle-3.11.3-150400.9.12.1.x86_64.rpm python311-tk-3.11.3-150400.9.12.1.x86_64.rpm python311-tools-3.11.3-150400.9.12.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2932 low SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python-pip fixes the following issues: - Removed .exe files from the RPM package, to prevent issues with security scanners (bsc#1212015). python-pip-22.3.1-150400.17.6.1.src.rpm python311-pip-22.3.1-150400.17.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2884 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: - Make marshalling of `set` and `frozenset` deterministic (bsc#1211765) python310 was updated to 3.10.12: - urllib.parse.urlsplit() now strips leading C0 control and space characters following the specification for URLs defined by WHATWG in response to CVE-2023-24329 (bsc#1208471). - Fixed a security in flaw in uu.decode() that could allow for directory traversal based on the input if no out_file was specified. - Do not expose the local on-disk location in directory indexes produced by http.client.SimpleHTTPRequestHandler. - trace.__main__ now uses io.open_code() for files to be executed instead of raw open(). - CVE-2007-4559: The extraction methods in tarfile, and shutil.unpack_archive(), have a new filter argument that allows limiting tar features than may be surprising or dangerous, such as creating files outside the destination directory. See Extraction filters for details (fixing bsc#1203750). libpython3_10-1_0-3.10.12-150400.4.30.1.x86_64.rpm python310-3.10.12-150400.4.30.1.src.rpm python310-3.10.12-150400.4.30.1.x86_64.rpm python310-base-3.10.12-150400.4.30.1.x86_64.rpm python310-core-3.10.12-150400.4.30.1.src.rpm python310-curses-3.10.12-150400.4.30.1.x86_64.rpm python310-dbm-3.10.12-150400.4.30.1.x86_64.rpm python310-devel-3.10.12-150400.4.30.1.x86_64.rpm python310-idle-3.10.12-150400.4.30.1.x86_64.rpm python310-tk-3.10.12-150400.4.30.1.x86_64.rpm python310-tools-3.10.12-150400.4.30.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-2937 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python311 fixes the following issues: python was updated to version 3.11.4: - CVE-2023-24329: Fixed blocklist bypass via the urllib.parse component when supplying a URL that starts with blank characters (bsc#1208471). - CVE-2007-4559: Fixed python tarfile module directory traversal (bsc#1203750). - Fixed a security in flaw in uu.decode() that could allow for directory traversal based on the input if no out_file was specified. - Do not expose the local on-disk location in directory indexes produced by http.client.SimpleHTTPRequestHandler. Bugfixes: - trace.__main__ now uses io.open_code() for files to be executed instead of raw open(). libpython3_11-1_0-3.11.4-150400.9.15.3.x86_64.rpm python311-3.11.4-150400.9.15.1.src.rpm python311-3.11.4-150400.9.15.1.x86_64.rpm python311-base-3.11.4-150400.9.15.3.x86_64.rpm python311-core-3.11.4-150400.9.15.3.src.rpm python311-curses-3.11.4-150400.9.15.1.x86_64.rpm python311-dbm-3.11.4-150400.9.15.1.x86_64.rpm python311-devel-3.11.4-150400.9.15.3.x86_64.rpm python311-doc-3.11.4-150400.9.15.2.x86_64.rpm python311-doc-devhelp-3.11.4-150400.9.15.2.x86_64.rpm python311-documentation-3.11.4-150400.9.15.2.src.rpm python311-idle-3.11.4-150400.9.15.1.x86_64.rpm python311-tk-3.11.4-150400.9.15.1.x86_64.rpm python311-tools-3.11.4-150400.9.15.3.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-4073 low SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for rpm fixes the following issue: - Enables build for all python modules (jsc#PED-68, jsc#PED-1988) python-rpm-4.14.3-150400.59.3.1.src.rpm python311-rpm-4.14.3-150400.59.3.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-3699 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for libxml2 fixes the following issues: - CVE-2023-39615: Fixed crafted xml can cause global buffer overflow (bsc#1214768). libxml2-python-2.9.14-150400.5.22.1.src.rpm python311-libxml2-2.9.14-150400.5.22.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-3824 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: - Update to 3.10.13. - CVE-2023-40217: Fixed TLS handshake bypass on closed sockets (bsc#1214692) The following non-security bug was fixed: - stabilizing FLAG_REF usage (required for reproduceability (bsc#1213463). libpython3_10-1_0-3.10.13-150400.4.33.1.x86_64.rpm python310-3.10.13-150400.4.33.1.src.rpm python310-3.10.13-150400.4.33.1.x86_64.rpm python310-base-3.10.13-150400.4.33.1.x86_64.rpm python310-core-3.10.13-150400.4.33.1.src.rpm python310-curses-3.10.13-150400.4.33.1.x86_64.rpm python310-dbm-3.10.13-150400.4.33.1.x86_64.rpm python310-devel-3.10.13-150400.4.33.1.x86_64.rpm python310-idle-3.10.13-150400.4.33.1.x86_64.rpm python310-tk-3.10.13-150400.4.33.1.x86_64.rpm python310-tools-3.10.13-150400.4.33.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-3943 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python311 fixes the following issues: Update to 3.11.5. - CVE-2023-40217: Fixed TLS handshake bypass on closed sockets (bsc#1214692). - CVE-2023-41105: Fixed input truncation on null bytes in os.path.normpath (bsc#1214693). libpython3_11-1_0-3.11.5-150400.9.20.2.x86_64.rpm python311-3.11.5-150400.9.20.1.src.rpm python311-3.11.5-150400.9.20.1.x86_64.rpm python311-base-3.11.5-150400.9.20.2.x86_64.rpm python311-core-3.11.5-150400.9.20.2.src.rpm python311-curses-3.11.5-150400.9.20.1.x86_64.rpm python311-dbm-3.11.5-150400.9.20.1.x86_64.rpm python311-devel-3.11.5-150400.9.20.2.x86_64.rpm python311-doc-3.11.5-150400.9.20.2.x86_64.rpm python311-doc-devhelp-3.11.5-150400.9.20.2.x86_64.rpm python311-documentation-3.11.5-150400.9.20.2.src.rpm python311-idle-3.11.5-150400.9.20.1.x86_64.rpm python311-tk-3.11.5-150400.9.20.1.x86_64.rpm python311-tools-3.11.5-150400.9.20.2.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-4194 low SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This feature update for python3 packages adds the following: - First batch of python3.11 modules (jsc#PED-68) - Rename sources of python3-kubernetes, python3-cryptography and python3-cryptography-vectors to accommodate the new 3.11 versions, this 3 packages have no code changes. python-Automat-22.10.0-150400.3.3.9.src.rpm python-Babel-2.12.1-150400.8.3.9.src.rpm python-Brotli-1.1.0-150400.7.5.10.src.rpm python-CairoSVG-2.7.1-150400.9.3.8.src.rpm python-Cython-3.0.2-150400.108.5.12.src.rpm python-Deprecated-1.2.14-150400.10.3.9.src.rpm python-Faker-18.11.1-150400.9.3.9.src.rpm python-Flask-2.3.2-150400.3.6.6.src.rpm python-Genshi-0.7.7-150400.11.3.10.src.rpm python-GitPython-3.1.34.1693646983.2a2ae77-150400.9.3.7.src.rpm python-Jinja2-3.1.2-150400.12.3.9.src.rpm python-MarkupSafe-2.1.3-150400.11.3.12.src.rpm python-Pallets-Sphinx-Themes-2.1.0-150400.9.3.8.src.rpm python-Pillow-9.5.0-150400.5.3.11.src.rpm python-PyHamcrest-2.0.3-150400.8.3.9.src.rpm python-PyMeeus-0.5.12-150400.5.3.9.src.rpm python-PyNaCl-1.5.0-150400.12.3.18.src.rpm python-PySocks-1.7.1-150400.11.3.9.src.rpm python-PyYAML-6.0.1-150400.5.5.7.src.rpm python-Pygments-2.15.1-150400.7.3.9.src.rpm python-SQLAlchemy-2.0.19-150400.6.5.12.src.rpm python-Sphinx-7.0.1-150400.3.3.9.src.rpm python-Twisted-22.10.0-150400.5.10.9.src.rpm python-Werkzeug-2.3.6-150400.6.3.9.src.rpm python-Whoosh-2.7.4-150400.10.3.9.src.rpm python-aiohttp-3.8.5-150400.10.5.9.src.rpm python-aiohttp_cors-0.7.0-150400.9.3.6.src.rpm python-aiosignal-1.3.1-150400.9.3.9.src.rpm python-alabaster-0.7.13-150400.12.3.9.src.rpm python-anyio-3.6.2-150400.9.3.6.src.rpm python-apipkg-3.0.1-150400.12.3.9.src.rpm python-appdirs-1.4.4-150400.11.3.9.src.rpm python-arrow-1.2.3-150400.5.3.9.src.rpm python-asn1crypto-1.5.1-150400.12.3.9.src.rpm python-async_generator-1.10-150400.10.3.9.src.rpm python-async_timeout-4.0.2-150400.10.3.9.src.rpm python-attrs-23.1.0-150400.8.3.9.src.rpm python-autocommand-2.2.2-150400.9.3.9.src.rpm python-backports.entry_points_selectable-1.2.0-150400.9.3.9.src.rpm python-bcrypt-4.0.1-150400.5.3.14.src.rpm python-beautifulsoup4-4.12.2-150400.7.3.9.src.rpm python-blinker-1.6.2-150400.12.3.8.src.rpm python-build-0.10.0-150400.9.3.9.src.rpm python-cairocffi-1.5.1-150400.7.3.8.src.rpm python-calver-2022.6.26-150400.9.3.9.src.rpm python-certifi-2023.7.22-150400.12.3.19.src.rpm python-cffi-1.15.1-150400.8.3.12.src.rpm python-chardet-5.1.0-150400.13.3.9.src.rpm python-charset-normalizer-3.1.0-150400.9.3.9.src.rpm python-click-8.1.3-150400.7.3.9.src.rpm python-constantly-15.1.0-150400.12.3.9.src.rpm python-contextvars-2.4-150400.10.3.9.src.rpm python-convertdate-2.4.0-150400.5.3.9.src.rpm python-coverage-7.2.5-150400.12.3.12.src.rpm python-cryptography-41.0.3-150400.16.9.12.src.rpm python-cryptography-vectors-41.0.3-150400.7.6.7.src.rpm python-cssselect-1.2.0-150400.12.3.9.src.rpm python-cssselect2-0.7.0-150400.9.3.9.src.rpm python-ddt-1.6.0-150400.11.3.7.src.rpm python-decorator-5.1.1-150400.12.3.9.src.rpm python-defusedxml-0.7.1-150400.7.3.8.src.rpm python-distlib-0.3.7-150400.9.3.9.src.rpm python-dnspython-2.3.0-150400.12.3.9.src.rpm python-docutils-0.19-150400.11.3.9.src.rpm python-dpcontracts-0.6.0-150400.9.3.9.src.rpm python-editables-0.3-150400.9.3.9.src.rpm python-elastic-transport-8.4.0-150400.9.3.6.src.rpm python-elasticsearch-7.6.0-150400.11.3.6.src.rpm python-elementpath-4.1.5-150400.10.3.8.src.rpm python-email-validator-2.0.0-150400.9.3.6.src.rpm python-exceptiongroup-1.1.2-150400.9.3.9.src.rpm python-execnet-1.9.0-150400.12.3.9.src.rpm python-fastjsonschema-2.16.3-150400.9.3.9.src.rpm python-fasttext-0.9.2-150400.9.3.12.src.rpm python-fields-5.0.0-150400.10.3.9.src.rpm python-filelock-3.12.2-150400.10.3.9.src.rpm python-flasgger-0.9.7.1-150400.9.3.9.src.rpm python-flit-3.8.0-150400.9.3.6.src.rpm python-flit-core-3.8.0-150400.9.3.9.src.rpm python-flit-scm-1.7.0-150400.9.3.9.src.rpm python-fqdn-1.5.1-150400.9.5.9.src.rpm python-freezegun-1.2.2-150400.7.3.9.src.rpm python-frozenlist-1.3.3-150400.9.3.10.src.rpm python-gevent-23.9.0-150400.13.6.1.src.rpm python-gitdb-4.0.10-150400.9.3.9.src.rpm python-graphviz-0.20.1-150400.4.3.9.src.rpm python-greenlet-2.0.2-150400.12.3.13.src.rpm python-gunicorn-20.1.0-150400.12.3.9.src.rpm python-h11-0.14.0-150400.9.3.9.src.rpm python-h2-4.1.0-150400.8.3.9.src.rpm python-hatchling-1.17.0-150400.9.3.9.src.rpm python-hpack-4.0.0-150400.8.3.9.src.rpm python-html5lib-1.1-150400.11.3.8.src.rpm python-httpbin-0.7.0+git20181107.f8ec666-150400.11.3.6.src.rpm python-httpcore-0.17.0-150400.9.3.9.src.rpm python-httptools-0.5.0-150400.9.5.8.src.rpm python-httpx-0.24.0-150400.9.5.6.src.rpm python-hyperframe-6.0.1-150400.8.3.9.src.rpm python-hyperlink-21.0.0-150400.12.3.9.src.rpm python-hypothesis-6.75.3-150400.3.3.9.src.rpm python-idna-3.4-150400.11.3.9.src.rpm python-imagesize-1.4.1-150400.12.3.9.src.rpm python-immutables-0.19-150400.10.3.11.src.rpm python-importlib-metadata-6.8.0-150400.10.5.9.src.rpm python-incremental-22.10.0-150400.3.3.9.src.rpm python-inflect-6.0.4-150400.9.3.6.src.rpm python-iniconfig-2.0.0-150400.10.3.9.src.rpm python-installer-0.7.0-150400.9.3.9.src.rpm python-isodate-0.6.1-150400.12.3.9.src.rpm python-isoduration-20.11.0-150400.9.3.6.src.rpm python-itsdangerous-2.1.2-150400.7.3.9.src.rpm python-jaraco.classes-3.2.3-150400.9.3.9.src.rpm python-jaraco.context-4.3.0-150400.9.3.9.src.rpm python-jaraco.functools-3.6.0-150400.9.3.6.src.rpm python-jaraco.packaging-9.2.0-150400.9.3.7.src.rpm python-jsonpointer-2.3-150400.11.3.9.src.rpm python-jsonschema-4.17.3-150400.14.3.9.src.rpm python-lark-1.1.5-150400.9.3.9.src.rpm python-libcst-0.4.9-150400.9.3.13.src.rpm python-lxml-4.9.3-150400.8.5.8.src.rpm python-markdown-it-py-2.2.0-150400.9.3.6.src.rpm python-mdurl-0.1.2-150400.9.3.6.src.rpm python-mistune-2.0.5-150400.11.5.9.src.rpm python-mock-3.0.5-150400.17.3.9.src.rpm python-more-itertools-9.1.0-150400.3.3.9.src.rpm python-multidict-6.0.4-150400.7.3.10.src.rpm python-mypy_extensions-1.0.0-150400.9.3.9.src.rpm python-numpy-1.24.2-150400.23.12.8.src.rpm python-numpy_1_24_2-gnu-hpc-1.24.2-150400.23.12.7.src.rpm python-olefile-0.46-150400.11.3.9.src.rpm python-outcome-1.2.0-150400.9.3.9.src.rpm python-packaging-23.1-150400.8.3.9.src.rpm python-parameterized-0.9.0-150400.10.5.9.src.rpm python-parso-0.8.3-150400.11.3.9.src.rpm python-path-16.6.0-150400.9.3.9.src.rpm python-pathspec-0.11.1-150400.9.3.9.src.rpm python-pathtools-0.1.2-150400.9.3.9.src.rpm python-pexpect-4.8.0-150400.15.5.9.src.rpm python-pip-22.3.1-150400.17.9.9.src.rpm python-platformdirs-3.5.1-150400.9.5.9.src.rpm python-pluggy-1.0.0-150400.14.3.9.src.rpm python-poetry-core-1.6.1-150400.9.3.9.src.rpm python-priority-2.0.0-150400.9.3.9.src.rpm python-proxy.py-2.4.3-150400.9.3.9.src.rpm python-psutil-5.9.5-150400.6.5.10.src.rpm python-ptyprocess-0.7.0-150400.11.3.9.src.rpm python-py-1.11.0-150400.12.3.9.src.rpm python-py-cpuinfo-9.0.0-150400.9.3.9.src.rpm python-pyOpenSSL-23.2.0-150400.3.6.9.src.rpm python-pyasn1-0.5.0-150400.12.3.9.src.rpm python-pyasn1-modules-0.3.0-150400.12.3.9.src.rpm python-pybind11-2.10.4-150400.9.3.9.src.rpm python-pycares-4.3.0-150400.9.3.11.src.rpm python-pycparser-2.21-150400.12.3.9.src.rpm python-pycurl-7.45.2-150400.13.3.12.src.rpm python-pycurl-test-7.45.2-150400.13.3.9.src.rpm python-pydantic-1.10.8-150400.9.3.6.src.rpm python-pyjsparser-2.7.1-150400.9.3.9.src.rpm python-pyparsing-3.0.9-150400.5.3.18.src.rpm python-pyproject-hooks-1.0.0-150400.9.3.9.src.rpm python-pyrsistent-0.19.3-150400.10.3.11.src.rpm python-pyserial-3.5-150400.12.3.9.src.rpm python-pytest-7.3.1-150400.3.3.9.src.rpm python-pytest-asyncio-0.21.1-150400.10.3.9.src.rpm python-pytest-benchmark-4.0.0-150400.9.3.6.src.rpm python-pytest-cov-4.1.0-150400.12.3.9.src.rpm python-pytest-datadir-1.4.1-150400.9.3.9.src.rpm python-pytest-env-0.8.2-150400.9.3.9.src.rpm python-pytest-expect-1.1.0-150400.12.3.9.src.rpm python-pytest-freezegun-0.4.2-150400.9.3.9.src.rpm python-pytest-httpbin-1.0.2-150400.12.3.6.src.rpm python-pytest-httpserver-1.0.8-150400.9.3.8.src.rpm python-pytest-mock-3.11.1-150400.13.3.9.src.rpm python-pytest-regressions-2.4.2-150400.9.3.7.src.rpm python-pytest-rerunfailures-12.0-150400.10.3.9.src.rpm python-pytest-subtests-0.11.0-150400.9.3.9.src.rpm python-pytest-timeout-2.1.0-150400.7.3.9.src.rpm python-pytest-trio-0.8.0-150400.9.3.8.src.rpm python-pytest-xdist-3.3.1-150400.3.3.9.src.rpm python-pytest-xprocess-0.22.2-150400.9.3.9.src.rpm python-python-dateutil-2.8.2-150400.5.3.9.src.rpm python-python-dotenv-1.0.0-150400.9.3.9.src.rpm python-pytz-2023.3-150400.6.3.9.src.rpm python-pytz-deprecation-shim-0.1.0.post0-150400.9.3.9.src.rpm python-re-assert-1.1.0-150400.9.3.9.src.rpm python-regex-2023.5.5-150400.5.3.11.src.rpm python-requests-2.31.0-150400.6.5.7.src.rpm python-requests-toolbelt-1.0.0-150400.7.3.8.src.rpm python-responses-0.23.1-150400.6.3.6.src.rpm python-rfc3339-validator-0.1.4-150400.9.3.9.src.rpm python-rfc3986-validator-0.1.1-150400.9.3.9.src.rpm python-rfc3987-1.3.8-150400.10.3.9.src.rpm python-rich-13.3.5-150400.9.3.6.src.rpm python-roman-3.3-150400.9.3.9.src.rpm python-ruamel.yaml.clib-0.2.7-150400.5.3.11.src.rpm python-semantic_version-2.10.0-150400.9.3.9.src.rpm python-service_identity-23.1.0-150400.8.3.8.src.rpm python-setuptools-67.7.2-150400.3.9.9.src.rpm python-setuptools-rust-1.6.0-150400.9.3.9.src.rpm python-setuptools_scm-7.1.0-150400.5.3.9.src.rpm python-sh-2.0.4-150400.9.3.9.src.rpm python-simplejson-3.19.1-150400.6.3.10.src.rpm python-six-1.16.0-150400.18.3.9.src.rpm python-smmap-5.0.0-150400.9.3.9.src.rpm python-sniffio-1.3.0-150400.9.3.9.src.rpm python-snowballstemmer-2.2.0-150400.12.3.9.src.rpm python-sortedcontainers-2.4.0-150400.8.3.9.src.rpm python-soupsieve-2.4.1-150400.7.3.9.src.rpm python-sphinx-issues-3.0.1-150400.9.3.8.src.rpm python-sphinx-version-warning-1.1.2-150400.9.3.9.src.rpm python-sphinx_rtd_theme-1.2.0-150400.12.3.9.src.rpm python-sphinxcontrib-applehelp-1.0.4-150400.3.3.9.src.rpm python-sphinxcontrib-devhelp-1.0.2-150400.3.3.9.src.rpm python-sphinxcontrib-htmlhelp-2.0.1-150400.3.3.9.src.rpm python-sphinxcontrib-jquery-4.1-150400.9.3.9.src.rpm python-sphinxcontrib-jsmath-1.0.1-150400.3.3.9.src.rpm python-sphinxcontrib-qthelp-1.0.3-150400.3.3.9.src.rpm python-sphinxcontrib-serializinghtml-1.1.5-150400.3.3.9.src.rpm python-sphinxcontrib-websupport-1.2.4-150400.13.3.9.src.rpm python-strict-rfc3339-0.7-150400.10.3.9.src.rpm python-testpath-0.6.0-150400.5.3.9.src.rpm python-text-unidecode-1.3-150400.3.3.9.src.rpm python-tinycss2-1.2.1-150400.9.3.9.src.rpm python-toml-0.10.2-150400.5.3.9.src.rpm python-tomli-2.0.1-150400.9.3.9.src.rpm python-tomli-w-1.0.0-150400.9.3.9.src.rpm python-tornado6-6.3.2-150400.9.3.12.src.rpm python-trio-0.22.0-150400.9.5.8.src.rpm python-trove-classifiers-2023.5.2-150400.9.3.9.src.rpm python-trustme-1.0.0-150400.5.3.8.src.rpm python-typing-inspect-0.8.0-150400.9.3.9.src.rpm python-typing_extensions-4.5.0-150400.3.5.9.src.rpm python-tzlocal-4.3-150400.5.3.9.src.rpm python-u-msgpack-python-2.7.2-150400.12.3.9.src.rpm python-uc-micro-py-1.0.1-150400.9.3.9.src.rpm python-uri-template-1.2.0-150400.9.3.9.src.rpm python-urllib3-2.0.6-150400.7.7.1.src.rpm python-validate_email-1.3-150400.9.3.9.src.rpm python-validators-0.20.0-150400.9.3.9.src.rpm python-virtualenv-20.22.0-150400.9.3.9.src.rpm python-watchdog-3.0.0-150400.9.3.9.src.rpm python-webcolors-1.13-150400.10.3.9.src.rpm python-webencodings-0.5.1-150400.12.3.9.src.rpm python-websockets-11.0.3-150400.10.3.11.src.rpm python-wheel-0.40.0-150400.13.3.9.src.rpm python-wrapt-1.15.0-150400.12.3.11.src.rpm python-wsproto-1.2.0-150400.9.3.9.src.rpm python-xcffib-1.3.0-150400.7.3.9.src.rpm python-xmlschema-2.3.0-150400.10.3.8.src.rpm python-yarl-1.9.2-150400.8.3.12.src.rpm python-zipp-3.15.0-150400.10.3.9.src.rpm python-zope.event-4.6-150400.11.5.9.src.rpm python-zope.interface-6.0-150400.12.3.10.src.rpm python-zope.testing-5.0.1-150400.7.3.9.src.rpm python311-Automat-22.10.0-150400.3.3.9.noarch.rpm python311-Babel-2.12.1-150400.8.3.9.noarch.rpm python311-Brotli-1.1.0-150400.7.5.10.x86_64.rpm python311-CairoSVG-2.7.1-150400.9.3.8.noarch.rpm python311-Cython-3.0.2-150400.108.5.12.x86_64.rpm python311-Deprecated-1.2.14-150400.10.3.9.noarch.rpm python311-Faker-18.11.1-150400.9.3.9.noarch.rpm python311-Flask-2.3.2-150400.3.6.6.noarch.rpm python311-GitPython-3.1.34.1693646983.2a2ae77-150400.9.3.7.noarch.rpm python311-Jinja2-3.1.2-150400.12.3.9.x86_64.rpm python311-MarkupSafe-2.1.3-150400.11.3.12.x86_64.rpm python311-Pallets-Sphinx-Themes-2.1.0-150400.9.3.8.noarch.rpm python311-Pillow-9.5.0-150400.5.3.11.x86_64.rpm python311-Pillow-tk-9.5.0-150400.5.3.11.x86_64.rpm python311-PyHamcrest-2.0.3-150400.8.3.9.noarch.rpm python311-PyMeeus-0.5.12-150400.5.3.9.noarch.rpm python311-PyNaCl-1.5.0-150400.12.3.18.x86_64.rpm python311-PySocks-1.7.1-150400.11.3.9.noarch.rpm python311-PyYAML-6.0.1-150400.5.5.7.x86_64.rpm python311-Pygments-2.15.1-150400.7.3.9.noarch.rpm python311-SQLAlchemy-2.0.19-150400.6.5.12.x86_64.rpm python311-Sphinx-7.0.1-150400.3.3.9.noarch.rpm python311-Twisted-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-all_non_platform-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-conch-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-conch_nacl-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-contextvars-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-http2-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-serial-22.10.0-150400.5.10.9.noarch.rpm python311-Twisted-tls-22.10.0-150400.5.10.9.noarch.rpm python311-Werkzeug-2.3.6-150400.6.3.9.noarch.rpm python311-Whoosh-2.7.4-150400.10.3.9.noarch.rpm python311-aiohttp-3.8.5-150400.10.5.9.x86_64.rpm python311-aiohttp_cors-0.7.0-150400.9.3.6.noarch.rpm python311-aiosignal-1.3.1-150400.9.3.9.noarch.rpm python311-alabaster-0.7.13-150400.12.3.9.noarch.rpm python311-anyio-3.6.2-150400.9.3.6.noarch.rpm python311-apipkg-3.0.1-150400.12.3.9.noarch.rpm python311-appdirs-1.4.4-150400.11.3.9.noarch.rpm python311-arrow-1.2.3-150400.5.3.9.noarch.rpm python311-asn1crypto-1.5.1-150400.12.3.9.noarch.rpm python311-async_generator-1.10-150400.10.3.9.noarch.rpm python311-async_timeout-4.0.2-150400.10.3.9.noarch.rpm python311-attrs-23.1.0-150400.8.3.9.noarch.rpm python311-autocommand-2.2.2-150400.9.3.9.noarch.rpm python311-backports.entry_points_selectable-1.2.0-150400.9.3.9.noarch.rpm python311-bcrypt-4.0.1-150400.5.3.14.x86_64.rpm python311-beautifulsoup4-4.12.2-150400.7.3.9.noarch.rpm python311-blinker-1.6.2-150400.12.3.8.noarch.rpm python311-build-0.10.0-150400.9.3.9.noarch.rpm python311-cairocffi-1.5.1-150400.7.3.8.noarch.rpm python311-cairocffi-pixbuf-1.5.1-150400.7.3.8.noarch.rpm python311-calver-2022.6.26-150400.9.3.9.noarch.rpm python311-certifi-2023.7.22-150400.12.3.19.noarch.rpm python311-cffi-1.15.1-150400.8.3.12.x86_64.rpm python311-chardet-5.1.0-150400.13.3.9.noarch.rpm python311-charset-normalizer-3.1.0-150400.9.3.9.noarch.rpm python311-click-8.1.3-150400.7.3.9.noarch.rpm python311-constantly-15.1.0-150400.12.3.9.noarch.rpm python311-contextvars-2.4-150400.10.3.9.noarch.rpm python311-convertdate-2.4.0-150400.5.3.9.noarch.rpm python311-coverage-7.2.5-150400.12.3.12.x86_64.rpm python311-cryptography-41.0.3-150400.16.9.12.x86_64.rpm python311-cryptography-vectors-41.0.3-150400.7.6.7.noarch.rpm python311-cssselect-1.2.0-150400.12.3.9.noarch.rpm python311-cssselect2-0.7.0-150400.9.3.9.noarch.rpm python311-ddt-1.6.0-150400.11.3.7.noarch.rpm python311-decorator-5.1.1-150400.12.3.9.noarch.rpm python311-defusedxml-0.7.1-150400.7.3.8.noarch.rpm python311-distlib-0.3.7-150400.9.3.9.noarch.rpm python311-dnspython-2.3.0-150400.12.3.9.noarch.rpm python311-docutils-0.19-150400.11.3.9.noarch.rpm python311-dpcontracts-0.6.0-150400.9.3.9.noarch.rpm python311-editables-0.3-150400.9.3.9.noarch.rpm python311-elastic-transport-8.4.0-150400.9.3.6.noarch.rpm python311-elasticsearch-7.6.0-150400.11.3.6.noarch.rpm python311-elementpath-4.1.5-150400.10.3.8.noarch.rpm python311-email-validator-2.0.0-150400.9.3.6.noarch.rpm python311-exceptiongroup-1.1.2-150400.9.3.9.noarch.rpm python311-execnet-1.9.0-150400.12.3.9.noarch.rpm python311-fastjsonschema-2.16.3-150400.9.3.9.noarch.rpm python311-fields-5.0.0-150400.10.3.9.noarch.rpm python311-filelock-3.12.2-150400.10.3.9.noarch.rpm python311-flasgger-0.9.7.1-150400.9.3.9.noarch.rpm python311-flit-3.8.0-150400.9.3.6.noarch.rpm python311-flit-core-3.8.0-150400.9.3.9.noarch.rpm python311-flit-scm-1.7.0-150400.9.3.9.noarch.rpm python311-fqdn-1.5.1-150400.9.5.9.noarch.rpm python311-freezegun-1.2.2-150400.7.3.9.noarch.rpm python311-frozenlist-1.3.3-150400.9.3.10.x86_64.rpm python311-gevent-23.9.0-150400.13.6.1.x86_64.rpm python311-gitdb-4.0.10-150400.9.3.9.x86_64.rpm python311-graphviz-0.20.1-150400.4.3.9.noarch.rpm python311-greenlet-2.0.2-150400.12.3.13.x86_64.rpm python311-gunicorn-20.1.0-150400.12.3.9.noarch.rpm python311-h11-0.14.0-150400.9.3.9.noarch.rpm python311-h2-4.1.0-150400.8.3.9.noarch.rpm python311-hatchling-1.17.0-150400.9.3.9.noarch.rpm python311-hpack-4.0.0-150400.8.3.9.noarch.rpm python311-html5lib-1.1-150400.11.3.8.noarch.rpm python311-httpbin-0.7.0+git20181107.f8ec666-150400.11.3.6.noarch.rpm python311-httpcore-0.17.0-150400.9.3.9.noarch.rpm python311-httptools-0.5.0-150400.9.5.8.x86_64.rpm python311-httpx-0.24.0-150400.9.5.6.noarch.rpm python311-hyperframe-6.0.1-150400.8.3.9.noarch.rpm python311-hyperlink-21.0.0-150400.12.3.9.noarch.rpm python311-hypothesis-6.75.3-150400.3.3.9.noarch.rpm python311-idna-3.4-150400.11.3.9.noarch.rpm python311-imagesize-1.4.1-150400.12.3.9.noarch.rpm python311-immutables-0.19-150400.10.3.11.x86_64.rpm python311-importlib-metadata-6.8.0-150400.10.5.9.noarch.rpm python311-incremental-22.10.0-150400.3.3.9.noarch.rpm python311-inflect-6.0.4-150400.9.3.6.noarch.rpm python311-iniconfig-2.0.0-150400.10.3.9.noarch.rpm python311-installer-0.7.0-150400.9.3.9.noarch.rpm python311-isodate-0.6.1-150400.12.3.9.noarch.rpm python311-isoduration-20.11.0-150400.9.3.6.noarch.rpm python311-itsdangerous-2.1.2-150400.7.3.9.noarch.rpm python311-jaraco.classes-3.2.3-150400.9.3.9.noarch.rpm python311-jaraco.context-4.3.0-150400.9.3.9.noarch.rpm python311-jaraco.functools-3.6.0-150400.9.3.6.noarch.rpm python311-jaraco.packaging-9.2.0-150400.9.3.7.noarch.rpm python311-jsonpointer-2.3-150400.11.3.9.noarch.rpm python311-jsonschema-4.17.3-150400.14.3.9.noarch.rpm python311-jsonschema-format-4.17.3-150400.14.3.9.noarch.rpm python311-jsonschema-format-nongpl-4.17.3-150400.14.3.9.noarch.rpm python311-lark-1.1.5-150400.9.3.9.noarch.rpm python311-libcst-0.4.9-150400.9.3.13.x86_64.rpm python311-lxml-4.9.3-150400.8.5.8.x86_64.rpm python311-markdown-it-py-2.2.0-150400.9.3.6.noarch.rpm python311-mdurl-0.1.2-150400.9.3.6.noarch.rpm python311-mistune-2.0.5-150400.11.5.9.noarch.rpm python311-mock-3.0.5-150400.17.3.9.noarch.rpm python311-more-itertools-9.1.0-150400.3.3.9.noarch.rpm python311-multidict-6.0.4-150400.7.3.10.x86_64.rpm python311-mypy_extensions-1.0.0-150400.9.3.9.noarch.rpm python311-numpy-1.24.2-150400.23.12.8.x86_64.rpm python311-numpy-gnu-hpc-1.24.2-150400.23.12.7.x86_64.rpm python311-numpy_1_24_2-gnu-hpc-1.24.2-150400.23.12.7.x86_64.rpm python311-olefile-0.46-150400.11.3.9.noarch.rpm python311-outcome-1.2.0-150400.9.3.9.noarch.rpm python311-packaging-23.1-150400.8.3.9.noarch.rpm python311-parameterized-0.9.0-150400.10.5.9.noarch.rpm python311-parso-0.8.3-150400.11.3.9.noarch.rpm python311-path-16.6.0-150400.9.3.9.noarch.rpm python311-pathspec-0.11.1-150400.9.3.9.noarch.rpm python311-pathtools-0.1.2-150400.9.3.9.noarch.rpm python311-pexpect-4.8.0-150400.15.5.9.noarch.rpm python311-pip-22.3.1-150400.17.9.9.noarch.rpm python311-platformdirs-3.5.1-150400.9.5.9.noarch.rpm python311-pluggy-1.0.0-150400.14.3.9.noarch.rpm python311-poetry-core-1.6.1-150400.9.3.9.noarch.rpm python311-priority-2.0.0-150400.9.3.9.noarch.rpm python311-proxy.py-2.4.3-150400.9.3.9.noarch.rpm python311-psutil-5.9.5-150400.6.5.10.x86_64.rpm python311-ptyprocess-0.7.0-150400.11.3.9.noarch.rpm python311-py-1.11.0-150400.12.3.9.noarch.rpm python311-py-cpuinfo-9.0.0-150400.9.3.9.noarch.rpm python311-pyOpenSSL-23.2.0-150400.3.6.9.noarch.rpm python311-pyasn1-0.5.0-150400.12.3.9.noarch.rpm python311-pyasn1-modules-0.3.0-150400.12.3.9.noarch.rpm python311-pybind11-2.10.4-150400.9.3.9.noarch.rpm python311-pycares-4.3.0-150400.9.3.11.x86_64.rpm python311-pycparser-2.21-150400.12.3.9.noarch.rpm python311-pycurl-7.45.2-150400.13.3.12.x86_64.rpm python311-pydantic-1.10.8-150400.9.3.6.noarch.rpm python311-pyjsparser-2.7.1-150400.9.3.9.noarch.rpm python311-pyparsing-3.0.9-150400.5.3.18.noarch.rpm python311-pyproject-hooks-1.0.0-150400.9.3.9.noarch.rpm python311-pyrsistent-0.19.3-150400.10.3.11.x86_64.rpm python311-pyserial-3.5-150400.12.3.9.noarch.rpm python311-pytest-7.3.1-150400.3.3.9.noarch.rpm python311-pytest-asyncio-0.21.1-150400.10.3.9.noarch.rpm python311-pytest-benchmark-4.0.0-150400.9.3.6.noarch.rpm python311-pytest-cov-4.1.0-150400.12.3.9.noarch.rpm python311-pytest-datadir-1.4.1-150400.9.3.9.noarch.rpm python311-pytest-env-0.8.2-150400.9.3.9.noarch.rpm python311-pytest-expect-1.1.0-150400.12.3.9.noarch.rpm python311-pytest-freezegun-0.4.2-150400.9.3.9.noarch.rpm python311-pytest-httpbin-1.0.2-150400.12.3.6.noarch.rpm python311-pytest-httpserver-1.0.8-150400.9.3.8.noarch.rpm python311-pytest-mock-3.11.1-150400.13.3.9.noarch.rpm python311-pytest-regressions-2.4.2-150400.9.3.7.noarch.rpm python311-pytest-rerunfailures-12.0-150400.10.3.9.noarch.rpm python311-pytest-subtests-0.11.0-150400.9.3.9.noarch.rpm python311-pytest-timeout-2.1.0-150400.7.3.9.noarch.rpm python311-pytest-trio-0.8.0-150400.9.3.8.noarch.rpm python311-pytest-xdist-3.3.1-150400.3.3.9.noarch.rpm python311-pytest-xprocess-0.22.2-150400.9.3.9.noarch.rpm python311-python-dateutil-2.8.2-150400.5.3.9.noarch.rpm python311-python-dotenv-1.0.0-150400.9.3.9.noarch.rpm python311-pytz-2023.3-150400.6.3.9.noarch.rpm python311-pytz-deprecation-shim-0.1.0.post0-150400.9.3.9.noarch.rpm python311-re-assert-1.1.0-150400.9.3.9.noarch.rpm python311-regex-2023.5.5-150400.5.3.11.x86_64.rpm python311-requests-2.31.0-150400.6.5.7.noarch.rpm python311-requests-toolbelt-1.0.0-150400.7.3.8.noarch.rpm python311-responses-0.23.1-150400.6.3.6.noarch.rpm python311-rfc3339-validator-0.1.4-150400.9.3.9.noarch.rpm python311-rfc3986-validator-0.1.1-150400.9.3.9.noarch.rpm python311-rfc3987-1.3.8-150400.10.3.9.noarch.rpm python311-rich-13.3.5-150400.9.3.6.noarch.rpm python311-roman-3.3-150400.9.3.9.noarch.rpm python311-semantic_version-2.10.0-150400.9.3.9.noarch.rpm python311-service_identity-23.1.0-150400.8.3.8.noarch.rpm python311-setuptools-67.7.2-150400.3.9.9.noarch.rpm python311-setuptools-rust-1.6.0-150400.9.3.9.noarch.rpm python311-setuptools_scm-7.1.0-150400.5.3.9.noarch.rpm python311-sh-2.0.4-150400.9.3.9.noarch.rpm python311-simplejson-3.19.1-150400.6.3.10.x86_64.rpm python311-six-1.16.0-150400.18.3.9.noarch.rpm python311-smmap-5.0.0-150400.9.3.9.noarch.rpm python311-sniffio-1.3.0-150400.9.3.9.noarch.rpm python311-snowballstemmer-2.2.0-150400.12.3.9.noarch.rpm python311-sortedcontainers-2.4.0-150400.8.3.9.noarch.rpm python311-soupsieve-2.4.1-150400.7.3.9.noarch.rpm python311-sphinx-issues-3.0.1-150400.9.3.8.noarch.rpm python311-sphinx-version-warning-1.1.2-150400.9.3.9.noarch.rpm python311-sphinx_rtd_theme-1.2.0-150400.12.3.9.noarch.rpm python311-sphinxcontrib-applehelp-1.0.4-150400.3.3.9.noarch.rpm python311-sphinxcontrib-devhelp-1.0.2-150400.3.3.9.noarch.rpm python311-sphinxcontrib-htmlhelp-2.0.1-150400.3.3.9.noarch.rpm python311-sphinxcontrib-jquery-4.1-150400.9.3.9.noarch.rpm python311-sphinxcontrib-jsmath-1.0.1-150400.3.3.9.noarch.rpm python311-sphinxcontrib-qthelp-1.0.3-150400.3.3.9.noarch.rpm python311-sphinxcontrib-serializinghtml-1.1.5-150400.3.3.9.noarch.rpm python311-sphinxcontrib-websupport-1.2.4-150400.13.3.9.noarch.rpm python311-strict-rfc3339-0.7-150400.10.3.9.noarch.rpm python311-testpath-0.6.0-150400.5.3.9.noarch.rpm python311-text-unidecode-1.3-150400.3.3.9.noarch.rpm python311-tinycss2-1.2.1-150400.9.3.9.noarch.rpm python311-toml-0.10.2-150400.5.3.9.noarch.rpm python311-tomli-2.0.1-150400.9.3.9.noarch.rpm python311-tomli-w-1.0.0-150400.9.3.9.noarch.rpm python311-tornado6-6.3.2-150400.9.3.12.x86_64.rpm python311-trio-0.22.0-150400.9.5.8.noarch.rpm python311-trove-classifiers-2023.5.2-150400.9.3.9.noarch.rpm python311-trustme-1.0.0-150400.5.3.8.noarch.rpm python311-typing-inspect-0.8.0-150400.9.3.9.noarch.rpm python311-typing_extensions-4.5.0-150400.3.5.9.noarch.rpm python311-tzlocal-4.3-150400.5.3.9.noarch.rpm python311-u-msgpack-python-2.7.2-150400.12.3.9.noarch.rpm python311-uc-micro-py-1.0.1-150400.9.3.9.noarch.rpm python311-uri-template-1.2.0-150400.9.3.9.noarch.rpm python311-urllib3-2.0.6-150400.7.7.1.noarch.rpm python311-validate_email-1.3-150400.9.3.9.noarch.rpm python311-validators-0.20.0-150400.9.3.9.noarch.rpm python311-virtualenv-20.22.0-150400.9.3.9.noarch.rpm python311-watchdog-3.0.0-150400.9.3.9.noarch.rpm python311-webcolors-1.13-150400.10.3.9.noarch.rpm python311-webencodings-0.5.1-150400.12.3.9.noarch.rpm python311-websockets-11.0.3-150400.10.3.11.x86_64.rpm python311-wheel-0.40.0-150400.13.3.9.noarch.rpm python311-wrapt-1.15.0-150400.12.3.11.x86_64.rpm python311-wsproto-1.2.0-150400.9.3.9.noarch.rpm python311-xcffib-1.3.0-150400.7.3.9.noarch.rpm python311-xmlschema-2.3.0-150400.10.3.8.noarch.rpm python311-yarl-1.9.2-150400.8.3.12.x86_64.rpm python311-zipp-3.15.0-150400.10.3.9.noarch.rpm python311-zope.event-4.6-150400.11.5.9.noarch.rpm python311-zope.interface-6.0-150400.12.3.10.x86_64.rpm python311-zope.testing-5.0.1-150400.7.3.9.noarch.rpm SUSE-SLE-Module-Python3-15-SP4-2023-4086 moderate SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python310 fixes the following issues: - Python documentation uses deprecated Sphinx index entries (https://github.com/python/cpython/issues/97950) libpython3_10-1_0-3.10.13-150400.4.36.1.x86_64.rpm python310-3.10.13-150400.4.36.1.src.rpm python310-3.10.13-150400.4.36.1.x86_64.rpm python310-base-3.10.13-150400.4.36.1.x86_64.rpm python310-core-3.10.13-150400.4.36.1.src.rpm python310-curses-3.10.13-150400.4.36.1.x86_64.rpm python310-dbm-3.10.13-150400.4.36.1.x86_64.rpm python310-devel-3.10.13-150400.4.36.1.x86_64.rpm python310-idle-3.10.13-150400.4.36.1.x86_64.rpm python310-tk-3.10.13-150400.4.36.1.x86_64.rpm python310-tools-3.10.13-150400.4.36.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP4-2023-4288 important SUSE Updates SLE-Module-Python3 15-SP4 x86 64 This update for python-Werkzeug fixes the following issues: - CVE-2023-46136: Fixed a potential denial of service via large multipart file uploads (bsc#1216581). python-Werkzeug-2.3.6-150400.6.6.1.src.rpm python311-Werkzeug-2.3.6-150400.6.6.1.noarch.rpm