summaryrefslogtreecommitdiffstats
path: root/Include
Commit message (Collapse)AuthorAgeFilesLines
* 3.7.14Ned Deily2022-09-061-2/+2
|
* [3.7] gh-95778: CVE-2020-10735: Prevent DoS by very large int() (GH-96504)Gregory P. Smith2022-09-062-0/+55
| | | | | | | | | | | | | | | | Converting between `int` and `str` in bases other than 2 (binary), 4, 8 (octal), 16 (hexadecimal), or 32 such as base 10 (decimal) now raises a `ValueError` if the number of digits in string form is above a limit to avoid potential denial of service attacks due to the algorithmic complexity. This is a mitigation for CVE-2020-10735 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735). This new limit can be configured or disabled by environment variable, command line flag, or :mod:`sys` APIs. See the `Integer String Conversion Length Limitation` documentation. The default limit is 4300 digits in string form. Patch by Gregory P. Smith [Google] and Christian Heimes [Red Hat] with feedback from Victor Stinner, Thomas Wouters, Steve Dower, Ned Deily, and Mark Dickinson.
* [3.7] gh-93065: Fix HAMT to iterate correctly over 7-level deep trees (GH-93149)Łukasz Langa2022-05-231-1/+13
| | | | | | | | Also while there, clarify a few things about why we reduce the hash to 32 bits. Co-authored-by: Eli Libman <eli@hyro.ai> Co-authored-by: Yury Selivanov <yury@edgedb.com> Co-authored-by: Łukasz Langa <lukasz@langa.pl> (cherry picked from commit c1f5c903a7e4ed27190488f4e33b00d3c3d952e5)
* Post release updatesNed Deily2022-03-161-1/+1
|
* 3.7.13v3.7.13Ned Deily2022-03-161-2/+2
|
* Post release updatesNed Deily2021-09-041-1/+1
|
* 3.7.12v3.7.12Ned Deily2021-09-041-2/+2
|
* Post release updatesNed Deily2021-06-281-1/+1
|
* 3.7.11v3.7.11Ned Deily2021-06-281-2/+2
|
* Post release updatesNed Deily2021-02-161-1/+1
|
* 3.7.10v3.7.10Ned Deily2021-02-161-2/+2
|
* Post release updatesNed Deily2020-08-171-1/+1
|
* 3.7.9v3.7.9Ned Deily2020-08-151-2/+2
|
* Post release updatesNed Deily2020-06-281-1/+1
|
* 3.7.8v3.7.8Ned Deily2020-06-271-3/+3
|
* Post release updateNed Deily2020-06-181-1/+1
|
* 3.7.8rc1v3.7.8rc1Ned Deily2020-06-171-4/+4
|
* Remove extraneous ')' in abstract.h (GH-19146)Miss Islington (bot)2020-04-081-1/+1
| | | | | (cherry picked from commit ac2cfe6631b77a2005d8f16f034dbb6154f04ab2) Co-authored-by: Jimmy Yang <codingExpert123@gmail.com>
* bpo-20526: Fix PyThreadState_Clear(): don't decref frame (GH-19120) ↵Victor Stinner2020-03-241-0/+1
| | | | | | | | | | | | | (GH-19136) (GH-19137) PyThreadState.frame is a borrowed reference, not a strong reference: PyThreadState_Clear() must not call Py_CLEAR(tstate->frame). Remove test_threading.test_warnings_at_exit(): we cannot warranty that the Python thread state of daemon threads is cleared in a reliable way during Python shutdown. (cherry picked from commit 5804f878e779712e803be927ca8a6df389d82cdf) (cherry picked from commit e97c8b0688bc62959ced477d842fcd37992ef649)
* Post release updatesNed Deily2020-03-101-1/+1
|
* 3.7.7v3.7.7Ned Deily2020-03-101-3/+3
|
* Post release updatesNed Deily2020-03-101-1/+1
|
* 3.7.7rc1v3.7.7rc1Ned Deily2020-03-041-4/+4
|
* Post release updatesNed Deily2019-12-191-1/+1
|
* 3.7.6v3.7.6Ned Deily2019-12-181-3/+3
|
* Post release updatesNed Deily2019-12-111-1/+1
|
* 3.7.6rc1v3.7.6rc1Ned Deily2019-12-111-4/+4
|
* [3.7] bpo-38600: Change the mark up of NULL in the C API documentation. ↵Serhiy Storchaka2019-10-301-3/+3
| | | | | | | (GH-16950) (GH-17000) Replace all *NULL* with ``NULL``. (cherry picked from commit 25fc088607c855060ed142296dc1bd0125fad1af)
* Post release updatesNed Deily2019-10-151-1/+1
|
* 3.7.5v3.7.5Ned Deily2019-10-141-3/+3
|
* Post release updatesNed Deily2019-10-021-1/+1
|
* 3.7.5rc1v3.7.5rc1Ned Deily2019-10-011-4/+4
|
* closes bpo-38253: Fix typo of Py_SET_ERANGE_IF_OVERFLOW in pyport.h. (GH-16230)Miss Islington (bot)2019-09-241-1/+1
| | | | | (cherry picked from commit 4346bad3321699d49a45e3446270b57726ab5c8f) Co-authored-by: Hai Shi <shihai1992@gmail.com>
* Fix _PyTime_MIN/MAX values (GH-15384)Miss Islington (bot)2019-08-231-2/+2
| | | | | | | _PyTime_t type is defined as int64_t, and so min/max are INT64_MIN/INT64_MAX, not PY_LLONG_MIN/PY_LLONG_MAX. (cherry picked from commit 8e76c456226438f2e4931ce7baf05ac8faae34a1) Co-authored-by: Sergey Fedoseev <fedoseev.sergey@gmail.com>
* Post release updatesNed Deily2019-07-081-1/+1
|
* 3.7.4 finalv3.7.4Ned Deily2019-07-081-3/+3
|
* 3.7.4rc2v3.7.4rc2Ned Deily2019-07-021-2/+2
|
* 3.7.4rc1v3.7.4rc1Ned Deily2019-06-181-4/+4
|
* [3.7] bpo-27987: align PyGC_Head to alignof(long double) (GH-13335) (GH-13581)Inada Naoki2019-06-031-1/+5
| | | | | This reverts commit 2156fec1f7a8f9972e90cdbaf404e3fd9eaccb35. Now that https://github.com/python/cpython/commit/1b85f4ec45a5d63188ee3866bd55eb29fdec7fbf is in, this change makes sense.
* [3.7] Revert "align PyGC_Head to alignof(long double) (GH-13335)" (GH-13569)Gregory P. Smith2019-05-251-5/+1
| | | | | | This reverts commit ea2b76bdc5f97f49701213d105b8ec2387ea2fa5. See the bug for discussion. https://bugs.python.org/issue27987
* bpo-27987: align PyGC_Head to alignof(long double) (GH-13335)Inada Naoki2019-05-251-1/+5
|
* [3.7] bpo-9566: Fix compiler warnings on Windows (GH-12920)Victor Stinner2019-04-231-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * bpo-9566: Fix compiler warnings in gcmodule.c (GH-11010) Change PyDTrace_GC_DONE() argument type from int to Py_ssize_t. (cherry picked from commit edad38e3e05586ba58291f47756eb3fb808f5577) * bpo-30465: Fix C downcast warning on Windows in ast.c (#6593) ast.c: fstring_fix_node_location() downcasts a pointer difference to a C int. Replace int with Py_ssize_t to fix the compiler warning. (cherry picked from commit fb7e7992beec7f76cc2db77ab6ce1e86446bfccf) * bpo-9566: Fix compiler warnings in peephole.c (GH-10652) (cherry picked from commit 028f0ef4f3111d2b3fc5b971642e337ba7990873) * bpo-27645, sqlite: Fix integer overflow on sleep (#6594) Use the _PyTime_t type and round away from zero (ROUND_UP, _PyTime_ROUND_TIMEOUT) the sleep duration, when converting a Python object to seconds and then to milliseconds. Raise an OverflowError in case of overflow. Previously the (int)double conversion rounded towards zero (ROUND_DOWN). (cherry picked from commit ca405017d5e776a2e3d9291236e62d2e09489dd2)
* [3.7] bpo-36389: _PyObject_IsFreed() now also detects uninitialized memory ↵Victor Stinner2019-04-112-2/+24
| | | | | | | | | | | | | | | | | | | | | | | | (GH-12770) (GH-12788) * bpo-36389: _PyObject_IsFreed() now also detects uninitialized memory (GH-12770) Replace _PyMem_IsFreed() function with _PyMem_IsPtrFreed() inline function. The function is now way more efficient, it became a simple comparison on integers, rather than a short loop. It detects also uninitialized bytes and "forbidden bytes" filled by debug hooks on memory allocators. Add unit tests on _PyObject_IsFreed(). (cherry picked from commit 2b00db68554422ec37faba2a80179a0172df6349) * bpo-36389: Change PyMem_SetupDebugHooks() constants (GH-12782) Modify CLEANBYTE, DEADDYTE and FORBIDDENBYTE constants: use 0xCD, 0xDD and 0xFD, rather than 0xCB, 0xBB and 0xFB, to use the same byte patterns than Windows CRT debug malloc() and free(). (cherry picked from commit 4c409beb4c360a73d054f37807d3daad58d1b567)
* bump to 3.7.3+Ned Deily2019-03-251-1/+1
|
* Merge tag 'v3.7.3' into 3.7Ned Deily2019-03-251-3/+3
|\
| * 3.7.3v3.7.3Ned Deily2019-03-251-3/+3
| |
* | bpo-36236: Handle removed cwd at Python init (GH-12450)Victor Stinner2019-03-191-1/+3
| | | | | | | | At Python initialization, the current directory is no longer prepended to sys.path if it has been removed.
* | bpo-36356: pymain_free() calls _PyRuntime_Finalize() (GH-12436)Victor Stinner2019-03-191-0/+3
| | | | | | | | Ensure that _PyRuntime_Finalize() is always call. This change fix a few memory leaks when running "python3 -V".
* | bpo-36317: Fix typo in _PyObject_FastCallDict documentation (GH-12383) ↵Rémi Lapeyre2019-03-181-1/+1
| | | | | | | | | | (GH-12402) (cherry picked from commit b4b97af8bed21e32eb77e7f7497acde1f8af4e70)
* | bump to 3.7.3rc1+Ned Deily2019-03-121-1/+1
|/
generated by cgit v0.12 at 2026-01-02 16:38:38 (GMT)