-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 02 May 2024 07:59:08 -0400
Source: python3.11
Architecture: source
Version: 3.11.2-6+deb12u2
Distribution: bookworm
Urgency: medium
Maintainer: Matthias Klose <doko@debian.org>
Changed-By: Stefano Rivera <stefanor@debian.org>
Closes: 1070133 1070135
Changes:
 python3.11 (3.11.2-6+deb12u2) bookworm; urgency=medium
 .
   [ Steve McIntyre ]
   * Apply upstream security fix for CVE-2024-0450
     Protect zipfile from "quoted-overlap" zipbomb.
     Closes: #1070133
   * Apply and tweak upstream security fix for CVE-2023-6597
     tempfile.TemporaryDirectory: fix symlink bug in cleanup
     Closes: #1070135
 .
   [ Stefano Rivera ]
   * Apply upstream patch to avoid a potential null pointer dereference in
     fileutils.
   * Apply upstream security fix for CVE-2023-41105
     os.path.normpath(): Path truncation at null bytes.
   * Apply upstream security fix for CVE-2023-40217
     Avoid bypass TLS of handshake protections on closed sockets.
   * Apply upstream security fix for CVE-2023-24329
     Strip C0 control and space characters in urlsplit.
Checksums-Sha1:
 5fded760380138911d319488c842721eb4ebb061 3199 python3.11_3.11.2-6+deb12u2.dsc
 98d3e86e23d823f3c472c84e53b9eb6c22414103 226220 python3.11_3.11.2-6+deb12u2.debian.tar.xz
 e784cf74d2d2561fe9b090102ef1c2e61c9ea32a 9653 python3.11_3.11.2-6+deb12u2_source.buildinfo
Checksums-Sha256:
 b8e1d50382a30ad73843000389a3047e93ebe87b06a3afb53af4cdc30fd195f5 3199 python3.11_3.11.2-6+deb12u2.dsc
 b3f6ef17056fc1dd97cf5448f3ce2abd9624610d16f0ec81f0431cc7de700128 226220 python3.11_3.11.2-6+deb12u2.debian.tar.xz
 21bcd09221baf61635e9851a4f826745572d1e468ac233dd88a75dd857b53e15 9653 python3.11_3.11.2-6+deb12u2_source.buildinfo
Files:
 37ee2dc18a2590ebb332cf48402f4435 3199 python optional python3.11_3.11.2-6+deb12u2.dsc
 b5103f68a4de42ac4eb25f0f2fba03e2 226220 python optional python3.11_3.11.2-6+deb12u2.debian.tar.xz
 5bfa0014a230c69c14289b35fff6b191 9653 python optional python3.11_3.11.2-6+deb12u2_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iIoEARYKADIWIQTumtb5BSD6EfafSCRHew2wJjpU2AUCZjOBShQcc3RlZmFub3JA
ZGViaWFuLm9yZwAKCRBHew2wJjpU2CWeAQDN8MPQOUPoCr3o4GbJYXwEftfVd31A
hl21q8PtKROcQAD/XU+Krj67KVii64CIOtsDaKbBQwGv6jA32jTQKhH7owo=
=ZXAt
-----END PGP SIGNATURE-----