1a3cef77d4
This version includes fixes for: * CVE-2020-14422: Hash collisions in IPv4Interface and IPv6Interface * CVE-2020-15523: Python uses invalid DLL path after calling Py_SetPath on Windows This version also includes support for OpenSSL 1.1.x builds that use 'no-deprecated' and '--api=1.1.0'[1], and so this removes the previous OpenSSL-related patches. This also backports fixes for security issues, including: * CVE-2019-20907: Infinite loop in the tarfile module This also updates the setuptools and pip packages to 47.1.0 and 20.1.1, respectively. [1]: https://github.com/python/cpython/pull/20566 Signed-off-by: Jeffery To <jeffery.to@gmail.com>
14 lines
496 B
Diff
14 lines
496 B
Diff
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894215
|
|
https://sources.debian.org/patches/python-setuptools/40.8.0-1/PKG-INFO-output-reproducible.diff/
|
|
|
|
--- a/setuptools/dist.py
|
|
+++ b/setuptools/dist.py
|
|
@@ -193,7 +193,7 @@ def write_pkg_file(self, file):
|
|
self.long_description_content_type
|
|
)
|
|
if self.provides_extras:
|
|
- for extra in self.provides_extras:
|
|
+ for extra in sorted(self.provides_extras):
|
|
write_field('Provides-Extra', extra)
|
|
|
|
|