Pullup ticket #6345 - requested by khorben

security/py-libtaxii: security fix Revisions pulled up: - security/py-libtaxii/Makefile 1.11 - security/py-libtaxii/PLIST 1.3 - security/py-libtaxii/distinfo 1.5 --- Module Name: pkgsrc Committed By: khorben Date: Mon Oct 19 17:21:42 UTC 2020 Modified Files: pkgsrc/security/py-libtaxii: Makefile PLIST distinfo Log Message: py-libtaxii: update to version 1.1.118 This notably fixes a security issue, CVE-2020-27197. Version 1.1.118: * #247 [CVE-2020-27197] Avoid SSRF on parsing XML (@orsinium) Version 1.1.117: * #244 SSL Verify Server not working correctly (@motok) (@nschwane) * #245 Unicode lxml.etree.SerialisationError on lxml 4.5.0+ (@advptr) Version 1.1.116: * #240 PY3 Compatibility changes for HTTP Response Body (@nschwane) Version 1.1.115: * #239 Convert the HTTP response body to a string type (PY3 this will be bytes) (@sddj) Version 1.1.114: * #237 Support converting dicts to content bindings (@danielsamuels) * #238 Provide XMLParser copies instead of reusing the cached instance. Prevents future messages to lose namespace Version 1.1.113: * #234 Add ability to load a configuration file when executing a script * #232 Fix TLS handshake failure when a server requires SNI (@marcelslotema) Version 1.1.112: * #227 Fixes to poll_client script (Python3 compatibility) * #226 Clean-up documentation warnings * #228 Fix 'HTTPMessage' has no attribute 'getheader' (Python3 compatibility) * #225 Fix checks that involve xpath (lxml) to prevent FutureWarning message * #230 Fix parsing status message round-trip (@danielsamuels) Thanks leot@ and pkgsrc's security team for the heads up! Pull-up to be requested.
author: bsiegert <bsiegert@pkgsrc.org> 2020-10-22 16:10:42 +0000
committer: bsiegert <bsiegert@pkgsrc.org> 2020-10-22 16:10:42 +0000
commit: cee66215fe3f245187c2d7628f537ae6d217f191 (patch)
tree: 096c00cfb7351cfa115807df8b394aa6227963d3
parent: 8ca92ae57bd5bcf7358e0bd8d56662a0d1858927 (diff)
download: pkgsrc-cee66215fe3f245187c2d7628f537ae6d217f191.tar.gz
3 files changed, 11 insertions, 8 deletions
diff --git a/security/py-libtaxii/Makefile b/security/py-libtaxii/Makefile
index e755bbd4ff5..1c32efcc9c2 100644
--- a/security/py-libtaxii/Makefile
+++ b/security/py-libtaxii/Makefile
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.10 2018/10/15 11:17:08 adam Exp $
+# $NetBSD: Makefile,v 1.10.16.1 2020/10/22 16:10:42 bsiegert Exp $
 
-DISTNAME=	libtaxii-1.1.111
+DISTNAME=	libtaxii-1.1.118
 PKGNAME=	${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=	security python
 #MASTER_SITES=	${MASTER_SITE_PYPI:=l/libtaxii/}
diff --git a/security/py-libtaxii/PLIST b/security/py-libtaxii/PLIST
index c9b489adfee..9560657d29f 100644
--- a/security/py-libtaxii/PLIST
+++ b/security/py-libtaxii/PLIST
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.2 2018/10/15 11:17:08 adam Exp $
+@comment $NetBSD: PLIST,v 1.2.16.1 2020/10/22 16:10:42 bsiegert Exp $
 bin/collection_information_client
 bin/collection_information_client.py
 bin/discovery_client
@@ -85,6 +85,9 @@ ${PYSITELIB}/libtaxii/taxii_default_query.pyo
 ${PYSITELIB}/libtaxii/test/__init__.py
 ${PYSITELIB}/libtaxii/test/__init__.pyc
 ${PYSITELIB}/libtaxii/test/__init__.pyo
+${PYSITELIB}/libtaxii/test/argument_parser_test.py
+${PYSITELIB}/libtaxii/test/argument_parser_test.pyc
+${PYSITELIB}/libtaxii/test/argument_parser_test.pyo
 ${PYSITELIB}/libtaxii/test/clients_test.py
 ${PYSITELIB}/libtaxii/test/clients_test.pyc
 ${PYSITELIB}/libtaxii/test/clients_test.pyo
diff --git a/security/py-libtaxii/distinfo b/security/py-libtaxii/distinfo
index 953e9b90185..7a7bef6de5e 100644
--- a/security/py-libtaxii/distinfo
+++ b/security/py-libtaxii/distinfo
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.4 2018/10/15 11:17:08 adam Exp $
+$NetBSD: distinfo,v 1.4.16.1 2020/10/22 16:10:42 bsiegert Exp $
 
-SHA1 (libtaxii-1.1.111.tar.gz) = 50d0a37c0fc50e598d1a939d840d1584f4ebe6e7
-RMD160 (libtaxii-1.1.111.tar.gz) = af52c366c58847adbc0f28241063918b75cfd21b
-SHA512 (libtaxii-1.1.111.tar.gz) = f638317200bb0691c3f994a4d624295bb3b64f4aba249e5b04d5b831eb985550702ef1c7653ca41fd8bb3972cab1c9d524ec540f87bf8581a0c0799ee5a7f831
-Size (libtaxii-1.1.111.tar.gz) = 119071 bytes
+SHA1 (libtaxii-1.1.118.tar.gz) = 4ddd4b6b00666015b2420b9eed69baf1ba626659
+RMD160 (libtaxii-1.1.118.tar.gz) = cd0764a53bf1714f9e100392b8e967f03c93b4a2
+SHA512 (libtaxii-1.1.118.tar.gz) = 858571d6572c6362dd1a1c9e5d13aee0f341ea13b43ed9c96f6b0dddb5347fefdd580e4ae0ac2f8a85c8f8956b04aa16a15604014d069ef7d95a821f70f5f0bc
+Size (libtaxii-1.1.118.tar.gz) = 122071 bytes
author	bsiegert <bsiegert@pkgsrc.org>	2020-10-22 16:10:42 +0000
committer	bsiegert <bsiegert@pkgsrc.org>	2020-10-22 16:10:42 +0000
commit	cee66215fe3f245187c2d7628f537ae6d217f191 (patch)
tree	096c00cfb7351cfa115807df8b394aa6227963d3
parent	8ca92ae57bd5bcf7358e0bd8d56662a0d1858927 (diff)
download	pkgsrc-cee66215fe3f245187c2d7628f537ae6d217f191.tar.gz