d78bdbd8ad
This contains a fix for CVE-2020-8492 (Denial of service in urllib.request.AbstractBasicAuthHandler)[1]. This also updates the setuptools and pip packages to 47.1.0 and 20.1.1, respectively. [1]: https://docs.python.org/release/3.7.8/whatsnew/changelog.html#python-3-7-8-release-candidate-1 Signed-off-by: Jeffery To <jeffery.to@gmail.com>
14 lines
496 B
Diff
14 lines
496 B
Diff
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894215
|
|
https://sources.debian.org/patches/python-setuptools/40.8.0-1/PKG-INFO-output-reproducible.diff/
|
|
|
|
--- a/setuptools/dist.py
|
|
+++ b/setuptools/dist.py
|
|
@@ -193,7 +193,7 @@ def write_pkg_file(self, file):
|
|
self.long_description_content_type
|
|
)
|
|
if self.provides_extras:
|
|
- for extra in self.provides_extras:
|
|
+ for extra in sorted(self.provides_extras):
|
|
write_field('Provides-Extra', extra)
|
|
|
|
|