traverseda
/
cpython
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
36,715 Commits 9 Branches 456 Tags 1.7 GiB
Commit Graph

4378 Commits

Author SHA1 Message Date
Matthias Klose b7180a89b3 Merge r82494 from the python2.6 branch: 
Issue #7673: Fix security vulnerability (CVE-2010-2089) in the audioop module,
  ensure that the input string length is a multiple of the frame size
 2010-10-17 10:48:14 +00:00
Matthias Klose d4367c24cd Merge r81080 from the python2.6 branch: 
Issue #8674: fix another bogus overflow check in audioop module.
 2010-10-17 10:34:40 +00:00
Matthias Klose 192b714f92 Merged revisions 81046 from the python2.6 branch: 
Issue #8674: Fix incorrect and UB-inducing overflow checks in audioop
module.  Thanks Tomas Hoger for the patch.
 2010-10-17 10:28:49 +00:00
Matthias Klose b8ec8a48ec - expat: Fix DoS via malformed XML (CVE-2009-3720). 2010-01-21 17:43:31 +00:00
Matthias Klose 166f80860e - Fix DoS via XML document with malformed UTF-8 sequences (CVE_2009_3560). 2010-01-21 17:41:47 +00:00
Philip Jenvey 4c9c260c1a #6990: clear threading.local's key only after its thread state is removed: 
fixes local subclasses leaving old state around after a ref cycle GC which
could be recycled by new locals
(backported from r75123)
 2009-09-29 05:30:42 +00:00
Martin v. Löwis 710fb8bf45 Issue #1040026: Fix os.times result on systems where HZ is incorrect. 2008-12-13 15:14:30 +00:00
Martin v. Löwis 8a64048a22 Backport of r64212 
Issue #1683: prevent forking from interfering in threading storage.
 2008-12-13 14:59:04 +00:00
Martin v. Löwis 46d410616d Issue #4228: Pack negative values the same way as 2.4 
in struct's L format.
 2008-12-13 14:34:06 +00:00
Amaury Forgeot d'Arc ef633d7c5d #4317: Fix an Array Bounds Read in imageop.rgb2rgb8. 
Backport of r67266
 2008-11-18 22:35:48 +00:00
Benjamin Peterson 6f08e85ad9 backport r67077 from the trunk: parser module now correctly validates relative imports 2008-11-03 15:19:35 +00:00
Amaury Forgeot d'Arc 3b335ff340 Issue #4176: Pickle would crash the interpreter when a __reduce__ function 
does not return an iterator for the 4th and 5th items.
(sequence-like and mapping-like state)

Backport of r67049.
 2008-10-30 21:40:05 +00:00
Thomas Heller 3e06faec4f Modify ctypes types with 'official' functions. Backport from trunk, 
snv rev 59943 and 59946.
 2008-10-18 21:33:44 +00:00
Gerhard Häring f80527679b Issue #4046: Backport of issue #3312's patch: fixes two crashes in the sqlite3 
module.
 2008-10-08 08:45:16 +00:00
Brett Cannon bab0f2ff66 Fix a refleak introduced by r66678 (backport of r66700). 2008-09-30 17:47:50 +00:00
Benjamin Peterson 833beab0e6 backport r66689: imageop could segfault due to poor argument validation 2008-09-30 01:46:48 +00:00
Thomas Heller a702fd537d Fix issue #3547 for MingW, update comments (backport from trunk). 2008-09-29 20:04:02 +00:00
Brett Cannon 70f1192dfc Backport of r66677: _lsprof crasher when a bad external timer is used during 
garbage collection of a Profiler object.
 2008-09-29 03:57:24 +00:00
Thomas Heller 8e97ea9c6b Fix issue #3547: ctypes is confused by bitfields of varying integer types 
Reviewed by Fredrik Lundh and Skip Montanaro.

Backport from trunk.
 2008-09-24 19:00:21 +00:00
Benjamin Peterson c610afbca4 backport r66496: integer overflow in _hashopenssl #3886 2008-09-18 01:27:26 +00:00
Guido van Rossum 4df1b6d478 Issue 1179: [CVE-2007-4965] Integer overflow in imageop module. 
Also fixes rgbimg module (just before it is removed from 2.6).
 2008-08-19 20:57:46 +00:00
Gregory P. Smith 7a076bed4c Backport of r64767 from trunk 
Fixes Issue #3309: Fix bz2.BZFile iterator to release its internal lock
properly when raising an exception due to the bz2file being closed.
Prevents a deadlock.
 2008-08-17 23:06:19 +00:00
Hirokazu Yamamoto 50c6072fc0 Backport r65745: Issue #2222: Fixed reference leak when occured 
os.rename() fails unicode conversion on 2nd parameter. (windows only)
 2008-08-17 09:39:06 +00:00
Georg Brandl e71268f93f #3205: bz2 iterator fails silently on MemoryError 
(backport from r65609)
 2008-08-12 08:47:02 +00:00
Gregory P. Smith 03e5182dca (backport of r61652 and r61665 from trunk) 
Issue #1471: Arguments to fcntl.ioctl are no longer broken on 64-bit OpenBSD
and similar platforms due to sign extension.
 2008-08-04 00:45:34 +00:00
Neal Norwitz 4f3be8a0a9 Security patches from Apple: prevent int overflow when allocating memory 2008-07-31 17:08:14 +00:00
Neal Norwitz 83ac0144fa Backport code from r65182: 
Issue #2620: Overflow checking when allocating or reallocating memory
was not always being done properly in some python types and extension
modules.  PyMem_MALLOC, PyMem_REALLOC, PyMem_NEW and PyMem_RESIZE have
all been updated to perform better checks and places in the code that
would previously leak memory on the error path when such an allocation
failed have been fixed.
 2008-07-28 05:06:20 +00:00
Amaury Forgeot d'Arc b15bdf7f7a #Issue3088 in-progress: Race condition with instances of classes derived from threading.local: 
When a thread touches such an object for the first time, a new thread-local __dict__ is created,
and the __init__ method is run.
But a thread switch can occur here; if the other thread touches the same object, it installs another
__dict__; when the first thread resumes, it updates the dictionary of the second...

This is the deep cause of the failures in test_multiprocessing involving "managers" objects.

Backport of r64601.
 2008-07-01 20:59:49 +00:00
Georg Brandl 6fa30f40b5 #3157: Fix docstrings for cursor methods. 2008-06-22 18:31:30 +00:00
Martin v. Löwis 5212da1b96 Patch #2111: Avoid mmap segfault when modifying a PROT_READ block. 2008-05-23 14:30:44 +00:00
Gregory P. Smith 0812de63c2 fix issue2858: potential memory corruption when any of the bsddb.db.* 
constructors raised an exception.  backportes from trunk c63403.
 2008-05-17 06:46:39 +00:00
Thomas Heller f3bb28395f Issue #2682: ctypes callback functions no longer contain a cyclic 
reference to themselves.

Backport from trunk.
 2008-04-25 19:55:19 +00:00
Gregory P. Smith f623467759 Merge r62235 from trunk. 
Fix zlib crash from zlib.decompressobj().flush(val) when val was not positive.
It tried to allocate negative or zero memory.  That fails.
 2008-04-09 00:26:44 +00:00
Gerhard Häring a269762fb0 Fix for Issue2515: Don't crash when trying to fetch data from a closed cursor. 2008-04-06 11:05:24 +00:00
Guido van Rossum f122902f76 Remove the advertising clause from the BSD license in timing.h. 
I have the email trail to prove that George Neville-Neil approved this.
(Backport of r62097.)
 2008-04-01 23:59:06 +00:00
Georg Brandl d9f1da0f22 Backport #1442: report exception when startup file cannot be run. 2008-03-29 01:50:46 +00:00
Gregory P. Smith 631df7550f Backport r61450 from trunk: 
Fix chown on 64-bit linux.  It needed to take a long (64-bit on 64bit linux) as
 uid and gid input to accept values >=2**31 as valid while still accepting
 negative numbers to pass -1 to chown for "no change".

 Fixes issue1747858.
 2008-03-18 19:21:40 +00:00
Raymond Hettinger 3662c9090d Backport r61286 adding GC to the grouper for itertools.groupby() fixing Issue 2246. 2008-03-06 22:58:42 +00:00
Martin v. Löwis 9c04257bf9 Fix deallocation of array objects when allocation ran out of memory. 2008-02-15 19:11:46 +00:00
Martin v. Löwis 73c01d4101 Added checks for integer overflows, contributed by Google. Some are 
only available if asserts are left in the code, in cases where they
can't be triggered from Python code.
 2008-02-14 11:26:18 +00:00
Amaury Forgeot d'Arc 3e5f8a6975 issue 2045: Infinite recursion when printing a subclass of defaultdict, 
if default_factory is set to a bound method.

Backport of r60663.
 2008-02-08 01:05:21 +00:00
Thomas Heller 527bf3a826 Fix the way methods are created for the _ctypes.COMError exception 
type; this fix is already in the trunk.
 2008-02-06 19:58:46 +00:00
Guido van Rossum d66e94d0e6 Backport r59862 (issue #712900): make long regexp matches interruptable 
by signals.
 2008-02-04 22:00:35 +00:00
Gregory P. Smith 946de92f9b backport r60544 from trunk: 
Merge this fix from the pybsddb tree:
r293 | jcea | 2008-01-31 01:08:19 -0800 (Thu, 31 Jan 2008) | 4 lines

Solved memory leak when using cursors with
databases without environment.
 2008-02-03 07:26:23 +00:00
Andrew MacIntyre 8af7067a19 Backport 60542: 
The wrapper function is supposed to be for spawnvpe() so that's
what we should call [this wrapper only available on OS/2].
 2008-02-03 07:20:39 +00:00
Thomas Heller c9b20734f4 Revert rev. 59926, it breaks comtypes (I need to further examine this). 2008-01-28 08:42:22 +00:00
Georg Brandl ee50e3c734 #1940: make it possible to use curses.filter() before curses.initscr() 
as the documentation says.
 (backport from rev. 60322)
 2008-01-26 14:03:51 +00:00
Thomas Heller fe528ebf68 Invert the checks in get_[u]long and get_[u]longlong. The intent was 
to not accept float types; the result was that integer-like objects
were not accepted.
 2008-01-24 13:08:54 +00:00
Thomas Heller f43a86b9d7 Backport from trunk: 
Fix a potential 'SystemError: NULL result without error'.
  NULL may be a valid return value from PyLong_AsVoidPtr.
Also move an older ctypes NEWS item in the correct category.
 2008-01-16 19:24:20 +00:00
Thomas Heller b9c741c43c Added NEWS entry, plus: 
Merged revisions 59925 via svnmerge from
svn+ssh://pythondev@svn.python.org/python/trunk/Modules/_ctypes

........
  r59925 | thomas.heller | 2008-01-11 20:34:06 +0100 (Fr, 11 Jan 2008) | 5 lines

  Raise an error instead of crashing with a segfault when a NULL
  function pointer is called.

  Will backport to release25-maint.
........
 2008-01-11 19:48:46 +00:00