a8760275bd
Issue #28563 : Fixed possible DoS and arbitrary code execution when handle
...
plural form selections in the gettext module. The expression parser now
supports exact syntax supported by GNU gettext.
2016-11-08 21:15:55 +02:00
52b0888dbd
Issue #28387 : Fixed possible crash in _io.TextIOWrapper deallocator when
...
the garbage collector is invoked in other thread.
Based on patch by Sebastian Cufre.
2016-11-03 15:36:50 +02:00
b858d7f074
Issue #28513 : Documented command-line interface of zipfile.
2016-11-02 12:05:54 +02:00
38db34abab
Issue #28248 : Update macOS installer build to use OpenSSL 1.0.2j.
...
Original patch by Mariatta Wijaya.
2016-10-31 19:48:38 -04:00
5396257be2
Issue #28449 : tarfile.open() with mode "r" or "r:" now tries to open a tar
...
file with compression before trying to open it without compression. Otherwise
it had 50% chance failed with ignore_zeros=True.
2016-10-30 20:52:55 +02:00
f10006cdb8
Issue #25464 : Fixed HList.header_exists() in Tix module by adding
...
a workaround to Tix library bug.
2016-10-24 23:47:08 +03:00
ef5c24a72e
Issue #28488 : shutil.make_archive() no longer adds entry "./" to ZIP archive.
2016-10-23 15:52:01 +03:00
38d335b2a1
Issue #28480 : Avoid label at end of compound statement --without-threads
2016-10-20 03:56:48 +00:00
05b84439a3
Issue #21720 : Improve exception message when the type of fromlist is unicode
2016-10-17 01:05:04 +03:00
5e2486b159
Issue #24452 : Make webbrowser support Chrome on Mac OS X (backport to 2.7)
2016-10-13 13:29:55 -07:00
8fb09ada55
Issue #28248 : Update Windows build to use OpenSSL 1.0.2j
2016-10-10 21:57:04 -05:00
829d4fbbf9
Issue #28394 : Typo fixes in code comments and changelog
...
Includes patch by Ville Skyttä.
2016-10-10 01:00:00 +00:00
61dd7ff073
Issue #26906 : Resolving special methods of uninitialized type now causes
...
implicit initialization of the type instead of a fail.
2016-10-08 12:24:09 +03:00
0ea51b18d5
Issue #18287 : PyType_Ready() now checks that tp_name is not NULL.
...
Original patch by Niklas Koep.
2016-10-07 23:24:35 +03:00
58ab4b57da
Issue #26293 : Fixed writing ZIP files that starts not from the start of the
...
file. Offsets in ZIP file now are relative to the start of the archive in
conforming to the specification.
2016-10-07 23:12:53 +03:00
08995a3390
Issue #24098 : Fixed possible crash when AST is changed in process of
...
compiling it.
2016-10-07 21:51:09 +03:00
1df2cbed76
mmap: do all internal arithmetic with Py_ssize_t while being very careful about overflow
2016-10-05 21:45:48 -07:00
ab8b75a56e
Issue #28350 : String constants with null character no longer interned.
2016-10-04 18:17:08 +03:00
5170c16d21
Issue #27897 : Fixed possible crash in sqlite3.Connection.create_collation()
...
if pass invalid string-like object as a name. Original patch by Xiang Zhang.
2016-10-01 08:24:55 +03:00
67edf73183
Issue #27942 : String constants now interned recursively in tuples and frozensets.
2016-09-30 10:38:08 +03:00
dbc995a279
Issue #28258 : Fixed build with Estonian locale (distclean target in
...
Makefile). Patch by Arfrever Frehtes Taifersar Arahesis.
2016-09-29 20:46:45 +03:00
846466d2a6
build_ext: correctly parse the link_objects user option ( closes #1703178 )
...
Patch by Valerie Lambert.
2016-09-28 23:13:58 -07:00
ad7a9eab0e
IDLE NEWS item and ack.
2016-09-28 21:55:33 -04:00
8cab419624
Issue #28253 : Fixed calendar functions for extreme months: 0001-01 and 9999-12.
...
Methods itermonthdays() and itermonthdays2() are reimplemented so that they
don't call itermonthdates() which can cause datetime.date under/overflow.
2016-09-27 22:45:20 -04:00
36beb5ec13
Issue #27963 : Fixed possible null pointer dereference in ctypes.set_conversion_mode().
...
Patch by Xiang Zhang.
2016-09-27 15:24:13 +03:00
aa0342091f
be extremely careful about overflows in encode_basestring_ascii ( closes #28284 )
2016-09-26 23:55:41 -07:00
2b91fadc7f
Issue #27611 : Fixed support of default root window in the Tix module.
2016-09-25 16:44:32 +03:00
b00cc8392a
Issue #27806 : add Aleks to Misc/ACKS.
2016-09-18 15:24:23 -04:00
37471dc6f9
Issue #26661 : setup.py now detects system libffi with multiarch wrapper.
2016-09-18 14:40:15 +02:00
db01b3e069
Issue #27932 : Prevent memory leak in win32_ver().
2016-09-17 16:43:01 -07:00
fd2f85d6e4
Issue #27806 : Fix 32-bit builds on macOS Sierra 10.12 broken by removal of
...
deprecated QuickTime/QuickTime.h header file. Patch by sashk.
2016-09-16 09:08:45 -04:00
75b2c5f82d
Issue #24363 : Continue parsing HTTP header in spite of invalid lines
2016-09-16 02:54:11 +00:00
12c8855d09
Issue #27599 : Fixed buffer overrun in binascii.b2a_qp() and binascii.a2b_qp().
2016-09-14 16:36:15 +03:00
51bfaa7efe
Issue #15819 : Drop dead code; -IInclude already added unconditionally
2016-09-13 11:41:45 +00:00
8f7d36ba9a
Issue #27952 : Get fixcid.py working with the re module
2016-09-11 09:48:57 +00:00
8b7aff8135
IDLE newx items.
2016-09-10 16:24:31 -04:00
d6004b4b3b
Issue #27566 : Fix clean target in freeze makefile (patch by Lisa Roach)
2016-09-09 18:38:10 -07:00
88c00132cc
Issue #25969 : Update the lib2to3 grammar to handle the unpacking
...
generalizations added in 3.5.
2016-09-09 18:32:52 -07:00
019a2e225b
Issue #22450 : Use "Accept: */*" in the default headers for urllib
2016-09-09 16:23:06 -07:00
b420601f09
Issue #24594 : Validates persist parameter when opening MSI database
2016-09-09 11:56:34 -07:00
a661009e37
Issue #26020 : Add news entry
2016-09-08 15:27:27 -07:00
280290adb8
Issue #21201 : Improves readability of multiprocessing error message from server to client for certain exceptions
2016-09-08 13:07:13 -05:00
794b2912ac
Fixes issue# 27983: Cause lack of llvm-profdata tool when using clang -
...
required for PGO linking - to be a configure time error rather than
make time when --with-optimizations is enabled. Also improve our
ability to find the llvm-profdata tool on MacOS and some Linuxes.
2016-09-08 00:07:40 -07:00
6d8fdfc84b
Issue #26359 : Add the --with-optimizations flag.
2016-09-07 23:28:23 -07:00
ba5480b656
Issue #27993 : Fix problems with the plural “objects” in docs and comments
2016-09-08 05:39:59 +00:00
6507657ddd
Issue #27895 : Spelling fixes (Contributed by Ville Skyttä).
2016-09-07 12:03:06 +00:00
6eec87810f
Issue #27570 : Avoid zero-length memcpy() calls with null source pointers
2016-09-07 11:04:41 +00:00
68b1f708bd
Fix placement of Misc/NEWS item for issue #15578 .
2016-09-07 22:26:08 -07:00
bf00bc783f
Issue #15578 : Correctly incref the parent module while importing.
2016-09-07 19:08:02 -07:00
280bc223b4
lib2to3.pgen3.driver.load_grammar() now creates a stable cache file
...
between runs given the same Grammar.txt input regardless of the hash
randomization setting.
Backport of 186bb8dc5540 from 3.5. Done in 2.7 per the lib2to3 exemption.
2016-09-08 01:04:37 +00:00
93d1a7051f
Fixes issue26307: The profile-opt build now applys PGO to the built-in modules.
2016-09-07 01:05:59 +00:00
6663eb6b72
Issue #27691 : Fix ssl module's parsing of GEN_RID subject alternative name fields in X.509 certs.
2016-09-06 23:25:35 +02:00
d988f429fe
Issues #27850 and #27766 : Remove 3DES from ssl default cipher list and add ChaCha20 Poly1305.
2016-09-06 20:06:47 +02:00
c2fc7c4f53
Issue #26470 : Port ssl and hashlib module to OpenSSL 1.1.0.
2016-09-05 23:37:13 +02:00
aa187c6878
rewrite unpack_add_info, so it has less memory corruption bugs ( closes #27944 )
2016-09-05 12:44:38 -07:00
e6239a3ab3
Issue #27934 : Use float.__repr__ instead of plain repr when JSON-encoding an instance of a float subclass. Thanks Eddie James.
2016-09-03 17:45:00 +01:00
0ca4b6f5a6
Issue #27888 : Prevent Windows installer from displaying console windows and failing when pip cannot be installed/uninstalled.
2016-09-01 11:21:56 -07:00
02c0c0b6e7
Issue #27870 : A left shift of zero by a large integer no longer attempts to allocate large amounts of memory.
2016-08-29 19:38:12 +01:00
e63af905a4
Issue #27861 : Fixed a crash in sqlite3.Connection.cursor() when a factory
...
creates not a cursor. Patch by Xiang Zhang.
2016-08-29 14:29:55 +03:00
eac40fdf72
Issue #19884 : Avoid spurious output on OS X with Gnu Readline
...
Also adjust the test condition, because enable-meta-key was only added in
6.1, not 6.0.
2016-08-27 02:54:43 +00:00
dc60c75aee
Issue #10513 : Fix a regression in Connection.commit()
...
Statements should not be reset after a commit.
Backported from 029050896b
2016-08-26 22:19:05 +03:00
8578316697
# 2466: ismount now recognizes mount points user can't access.
...
Patch by Robin Roth, backport by Xiang Zhang.
2016-08-23 12:30:28 -04:00
89446b2c91
Issue #25604 : Fix bug in integer true division that could have resulted in off-by-one-ulp results in unusual cases.
2016-08-21 10:59:48 +01:00
7ff1b62df0
Fix typo in IDLE News.
2016-08-21 00:18:49 -04:00
7a2a586a52
Add 2.7.13 IDLE NEWS and idlelib/NEWS.txt items.
2016-08-20 21:40:55 -04:00
aed5a4ee73
rearrange methodcaller_new so that the main error case does not cause uninitialized memory usage ( closes #27783 )
2016-08-16 23:35:35 -07:00
0f3596a136
do not decref value borrowed from list ( closes #27774 )
2016-08-15 22:01:41 -07:00
505989c0e7
fail when negative values are passed to instr()
2016-08-15 21:40:14 -07:00
b97001ef46
Issue #10910 : Update FreedBSD version checks for the ctype UTF-8 workaround.
...
The original problem has been fixed in newer versions of FreeBSD.
Patch by Dimitry Andric of the FreeBSD project.
2016-08-15 03:04:36 -04:00
6c08d9628a
fix possible integer overflow in binascii.b2a_qp ( closes #27760 )
...
Reported by Thomas E. Hybel
2016-08-13 18:33:33 -07:00
f670120cb7
do not allow reading negative values with getstr()
2016-08-13 18:15:28 -07:00
d81ad0df71
check for overflow in join_append_data ( closes #27758 )
...
Reported by Thomas E. Hybel
2016-08-13 17:17:06 -07:00
04a5385353
fix possible overflow in encode_basestring_ascii ( #23369 )
2016-08-13 16:47:25 -07:00
3d36f0f712
Spelling and grammar fixes in code comments and documentation
2016-07-28 02:37:04 +00:00
bc82de084c
Issue #27641 : Comment out regeneration rules when cross compiling
2016-07-29 05:52:32 +00:00
75d7b615ba
Prevent HTTPoxy attack (CVE-2016-1000110)
...
Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which
indicates that the script is in CGI mode.
Issue reported and patch contributed by Rémi Rampin.
2016-07-30 05:49:53 -07:00
a850ef698e
Issue #27626 : Spelling fixes in docs, comments and internal names
...
Based on patch by Ville Skyttä.
2016-07-28 01:11:04 +00:00
e2eacc02bc
Issue #23943 : Fix typos. Patch by Piotr Kasprzyk.
2016-07-28 03:04:04 +00:00
801110b303
Issue #27490 : Do not build pgen when cross-compiling
...
The dependendency on the $(PGEN) variable must only be
set when not cross-compiling. When cross-compiling,
$(PGEN) will not be used, so no need to build it.
Patch by Thomas Perl.
2016-07-28 01:28:27 +00:00
2a0438d2e4
Issue #27581 : Don’t rely on overflow wrapping in PySequence_Tuple()
...
Patch by Xiang Zhang.
2016-07-25 02:30:05 +00:00
1e411c5c78
Issue #27130 : Fix handling of buffers exceeding (U)INT_MAX in “zlib” module
...
Ported from patches by Xiang Zhang, Nadeem Vawda, and myself.
2016-07-23 04:22:09 +00:00
0c08fe09f9
Issue #27507 : Check for integer overflow in bytearray.extend()
...
Patch by Xiang Zhang.
2016-07-18 07:53:13 +00:00
6c4fa70da6
make too many nested blocks be a SyntaxError instead of a SystemError ( closes #27514 )
...
Patch by Ammar Askar.
2016-07-14 22:00:03 -07:00
65e0d8ca65
Issue #27369 : Don’t test error message detail that changed in Expat 2.2.0
2016-07-14 01:31:46 +00:00
373773d5b2
Issue #27473 : Fixed possible integer overflow in str, unicode and bytearray
...
concatenations and repetitions. Based on patch by Xiang Zhang.
2016-07-12 15:46:57 +03:00
bf2dca96fb
English spelling and grammar fixes
2016-07-11 07:51:37 +00:00
b362f75f6e
Issue #25523 : Correct "a" article to "an" article
...
This changes the main documentation, doc strings, source code comments, and a
couple error messages in the test suite. In some cases the word was removed
to fix the grammar.
2015-11-02 03:37:02 +00:00
8c6849bfe6
Issue #23804 : Fix SSL zero-length recv() calls to not block and raise EOF
2016-07-11 00:17:13 +00:00
2d2e6be39a
[port to 2.7] - Issue #27466 : Change time format returned by
...
http.cookie.time2netscape, confirming the netscape cookie format.
2016-07-10 08:34:21 -07:00
3c9ce74c21
Issue #23908 : os functions, open() and the io.FileIO constructor now reject
...
unicode paths with embedded null character on Windows instead of silently
truncate them.
2016-07-01 23:34:44 +03:00
094338ef58
Update NEWS and idlelib NEWS.text.
2016-06-26 18:20:14 -04:00
199b7d5662
Issue #22115 : Fixed tracing Tkinter variables.
...
* trace_vdelete() with wrong mode no longer break tracing
* trace_vinfo() now always returns a list of pairs of strings
2016-06-26 17:41:14 +03:00
1d6879bb67
merge 2.7.12 release branch
2016-06-25 14:04:11 -07:00
1fae982b9b
2.7.12 final
2016-06-25 14:03:21 -07:00
7a5691f0ba
merge 2.7.12 release branch
2016-06-21 23:13:33 -07:00
95d9555212
fix idle about dialog #27365
2016-06-21 23:12:54 -07:00
4e6e565368
Fix English spelling and grammar errors
2016-06-20 07:52:50 +00:00
4183387e79
Issue #27294 : Numerical state in the repr for Tkinter event objects is now
...
represented as a compination of known flags.
2016-06-18 22:08:49 +03:00
0ffd26f7ff
Issue #26930 : Update Windows build to OpenSSL 1.0.2h
2016-06-15 17:12:38 -05:00
1563f164e5
2.7.12 release candidate 1
2016-06-11 14:46:26 -07:00
Serhiy Storchaka
Ned Deily
Martin Panter
Berker Peksag
Guido van Rossum
Zachary Ware
Benjamin Peterson
Terry Jan Reedy
Alexander Belopolsky
Christian Heimes
Steve Dower
sashk
Gregory P. Smith ext:(%20%5BGoogle%20Inc.%5D)
Raymond Hettinger
Davin Potts
Eric Snow
Mark Dickinson
R David Murray
Senthil Kumaran