python-base-64bit-2.7.18-lp152.3.21.1<>,apG/=„#;Z Doݭu[: +kƋ'/æ<WAc?{.AH1P1  2{Jlu bZ{0o.^X[J'W63R棩skV ;4,4q(ApxرT`J wZQ$h23 yޓk*$U ߫`_3jXhy%O$FKVf,8Ǿ`u>d?Td ( H -DJXh<X< < H< 8< < 0< <L<x< (8M9M:$eM>ouGo<Hpp<Iq`<XqYq\q<]r<^usbucv`dvewfwlwuw <vx;w0<x <yPCpython-base-64bit2.7.18lp152.3.21.1Python Interpreter base packagePython is an interpreted, object-oriented programming language, and is often compared to Tcl, Perl, Scheme, or Java. You can find an overview of Python in the documentation and tutorials included in the python-doc (HTML) or python-doc-pdf (PDF) packages. This package contains all of stand-alone Python files, minus binary modules that would pull in extra dependencies.apGobs-arm-10XopenSUSE Leap 15.2openSUSEPython-2.0http://bugs.opensuse.orgDevelopment/Languages/Pythonhttp://www.python.org/linuxaarch64_ilp32/sbin/ldconfigh$pB $@` @  MX!HP$P 8%XP x8  (G P #`@@ 8X Pp 1AA큤apGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapGapG1e21eb3d678351d87a752ebc06b20918e158343749a00b277a75d0fb5dec53726534cac0f86130c80efa7febe4df317d599599a189f379075ab74fe8a5e9e75abc5d3ea1f28e7150091ac90bd2ae2e96302e304418cf6a4b964a2bdd0d218016043ffe2fb45e1620327def41666007ee9c592d5dc6199142f1c0e1ec572661c9525e72f9b8fcac16898f1caf0b4a1d02aad8b0463cea6ce9c11b0b74e77428416dbfc82fb1132ad4ae78a728d21b95bb6422c6b1dc4221b30ca568ffd4a165dddeb28b19fe0dbe51049080d4094ee8bb81c7dda897a95a3875e5d26c8812394467865d3ef6bd4d7e2aad985f258f7b4fae45049f08873535a783d162a1329e1fc8988e2dbb70df60df76c5cd1638a9058e3771d92303a767966d0fc2694765041e7966270d268ee0d89881087b9b2b4a6f0f44c6cb90dc991a7a3c74252f866c1721b619597e505054c0bbdfaebe03067da3239cb52f7d824212f011fc395c30963ada03947d5e3ae170bf219be4fcbbc24e574d323251e14e0dbb377ba8b67f08e81a41234ceb5836ecd512bae1cd0ebae46ca43f07e8c9a5e40132369b7fb029975f829d6e23dffe78de04a594858954f40aa85fd9a83648495022e8e17f468f914867c6d3d46abd5227386aaa860be0212c45b2ce714154ec88ab77c3a8273a923ce2d79a141e69153fa9fb45df4516f141b04ac41ad7a339d835f70d5e88d9fa50d741cdcc6c4bb6fb31846ce89001873dab7f3000353ce2bb5fea381191cc045fbba887e052efe9d2d86f7c6fb0412225d128948250758e257b9fb0d53174ee8872bb9e51259baae3d2b111b281abe5dcbcdd593de55672e5ac42f4c38dd4631068c7e8bee18c70b383876dd80bc30ac9aa87a3f108558630dbf8e4797d2f68664b1f04804aaa977a03ba543c7792b215c19ef1d77c3f60a20af7e28ce43263eacf2f365e4ebef362b08276e68a7111ad76b5195f1241d69efbe8af4b37d489b7193160949fc86b7c4ffa77553698feb3c07274be017c3e3596d3c479eddd82a25731e61dd33f520e58ce4a5304c9f428d94fcd7724aaff2c45de7292f19c72b6050c7350166fc8b27a1c9b3827b4e714042fe9eabfcc95f96bb0c2201a3b56e720d58b31cfb27fb248b7455f52e021708150d9759867353b3f8047e2315c9b5e5f81fe56615709ed207e62027e188159a620dc3625300556a2b140e928b1d6ff8636f8e9f2397142f203a547a2bbb834068379787508860868f24af9fd5dab23ac3c89e8c40e744d9155bbeb335499a5106bc66389720ee181a940eb897d35dedb44acfb77e30e0712114a8baeb3396ea6a4ce34c788a9b3abcf8d63f07f7bda1702d96c1bcee35812a1204d2ac96baa7a22d0430bb2813361a7e756e7b0de2132737a81c66836ab4bc8e0de097b7a4b695de9ac82e1aa7f7a727be1580ce52b8f07d466b47e351c363d4a896ceb2042416e37dc300e7b4736d4367683744ff003554f2b347b9aa1f68c5f1e69ae7ccd1bd6262fde9ed65c31cb6574de04443afa52f64c5a923602f651f2e840c8f6e0074c98eb3234edaa6e34b0e6a2b2555ce4d8138d9a219ee6d52e59b989080c5ea086373d63e3658cc8add420d8a7d61a2f9f627721893f7590b428df9b3c28c7563062108295296461e4c287ac8450689df38ef116369cfc6572cb6199ad5f5d802be2d1cbc50ecbb97b1faf9c488fe8aa47e46b31fa53141c8053c75cc98472d582fb4a69dcb632e09590614582376e3e0d6b0e8b3337e471173f0b8251c0af89927627046fef67e7ae60f7c6acb9bf82d18ff6b969d944864435f32ba155da35009844ae29672f033bebc27f873e5d2cb0510d16fa4cea32dac8bc9d2a9e4e26ca1d8ef61e699fbf96e097a4c08138f71478326939876ade4770a6e4d17f36e3d823abe4766ed641e43800ad6084ff298af6e9c8bd566df6c7b0c9e5ec76a7b195c084f3d183159bddb4dca5b59a9f879abf64e68842c3e74dc1e165a781bf8299317d87857b025f6a420908f810b19f48063f1356242ed1a236e5e75b4e2a815f5e8d2daeaab66eb2b1415ccaf674985d98ff0059de54b44965d3df879c37fce80c2748a2ead6ba582174f8216f0b87ea86f18ab34406c709493f72ad7bd206dc25c37c68a475cae20227179a244b59d46af5a2e403ca4d0f2f5d08a3d00a501a280123047d01288107ce44e1614e6fbca2add0f7d2d0df68cd75e989c71528cbe7e86ccb6e71685dab78e976a50aad4dd6997a1173b46599d422a975eae745c8488525ce06dd062b517a4702b89b67a60b8d7bcf4d610b9ac1158cfb8eab0f8db2df23771312c89bf2b06ef3566940d84cbf6d07c56b9f2291e2f9bfb3c1f3a456fb3f689aa50ea949fbac16ca210d8cc262f5fdb91afd35d435a77df9a1566778d9fe68537af9669ddbe2fe1fa40478c3d43dde9b95d07046b575b7b55a97f6c6570070c68478cdbc60ca47ecb043b8b4e29f4876545f7f2350c4b8f4ce4f4bba3d325c97e3afc0d3cdf56491c8cbe02fb56547015550998317eab1e84f687d8645719ede9008928f04f46f5938fad3522c1eaf6daf23393b5a2163f15024e0f5c4bcca1d85354b507ec0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootpython-base-2.7.18-lp152.3.21.1.src.rpmpython-base-64bitpython-base-64bit(aarch-64)@@@@@@@@@@@@@@@@@@@    /bin/shld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libbz2.so.1()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libcrypt.so.1()(64bit)libcrypt.so.1(GLIBC_2.17)(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.17)(64bit)libnsl.so.2()(64bit)libnsl.so.2(LIBNSL_1.0)(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libpython2.7.so.1.0()(64bit)libtirpc.so.3()(64bit)libtirpc.so.3(TIRPC_0.3.0)(64bit)libz.so.1()(64bit)libz.so.1(ZLIB_1.2.0)(64bit)python(abi)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)2.73.0.4-14.6.0-14.0-15.2-14.14.1aI@a'@a#aj@a`t`8`_T^J^@^@^>^>^;^8 @^.^g@^ @]f@]@]]]d@]d@]@]z@]V]y@]9]1]\t@\\7\7\\J@\J@\C@\2[[#@[6@[@[ @[Za@Z@ZxG@ZtRZp^@ZFusion Future Fusion Future Fusion Future Fusion Future Matej Cepl Matej Cepl Matej Cepl Matej Cepl Matej Cepl Matej Cepl Matej Cepl Matej Cepl Matej Cepl Matej Cepl Tomáš Chvátal Matej Cepl Matej Cepl Tomáš Chvátal Dominique Leuenberger Matej Cepl Matej Cepl Matej Cepl Matej Cepl Steve Kowalik Matej Cepl Matej Cepl Bernhard Wiedemann Matej Cepl Matej Cepl Tomáš Chvátal Matej Cepl Martin Liška Matej Cepl Matej Cepl Matej Cepl Matej Cepl mcepl@suse.commcepl@suse.commcepl@suse.comTodd R Tomáš Chvátal Matěj Cepl mcepl@suse.compsimons@suse.commcepl@suse.commichael@stroeder.commliska@suse.czpsimons@suse.comnormand@linux.vnet.ibm.comnormand@linux.vnet.ibm.comtchvatal@suse.comjmatejek@suse.comjmatejek@suse.commpluskal@suse.comvcizek@suse.comjmatejek@suse.comkukuk@suse.dejmatejek@suse.comjmatejek@suse.combwiedemann@suse.comjmatejek@suse.comjmatejek@suse.comjmatejek@suse.comjmatejek@suse.comjmatejek@suse.comrguenther@suse.comjmatejek@suse.comdimstar@opensuse.orgjmatejek@suse.commeissner@suse.comdmueller@suse.commichael@stroeder.comschwab@suse.deschwab@suse.dejmatejek@suse.comdmueller@suse.com- Add CVE-2019-20907_tarfile-inf-loop.patch fixing bsc#1174091 (CVE-2019-20907, bpo#39017) avoiding possible infinite loop in specifically crafted tarball. Add recursion.tar as a testing tarball for the patch. - Provide the newest setuptools wheel (bsc#1176262, CVE-2019-20916) in their correct form (bsc#1180686). - Add CVE-2020-26116-httplib-header-injection.patch fixing bsc#1177211 (CVE-2020-26116, bpo#39603) no longer allowing special characters in the method parameter of HTTPConnection.putrequest in httplib, stopping injection of headers. Such characters now raise ValueError.- Renamed patch for assigned CVE: * bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch -> CVE-2021-3737-fix-HTTP-client-infinite-line-reading-after-a-HTTP-100-Continue.patch (boo#1189241, CVE-2021-3737)- Renamed patch for assigned CVE: * bpo43075-fix-ReDoS-in-request.patch -> CVE-2021-3733-fix-ReDoS-in-request.patch (boo#1189287, CVE-2021-3733) - Fix python-doc build (bpo#35293): * sphinx-update-removed-function.patch - Update documentation formatting for Sphinx 3.0 (bpo#40204).- Add bpo43075-fix-ReDoS-in-request.patch which fixes ReDoS in request (bpo#43075, boo#1189287). - Add missing security announcement to bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch.- Add bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch which fixes http client infinite line reading (DoS) after a http 100 (bpo#44022, boo#1189241).- Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668).- Add CVE-2021-23336-only-amp-as-query-sep.patch which forbids use of semicolon as a query string separator (bpo#42967, bsc#1182379, CVE-2021-23336).- Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution.- (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency.- Add patch configure_PYTHON_FOR_REGEN.patch which makes configure.ac to consider the correct version of PYTHON_FO_REGEN (bsc#1078326).- Use python3-Sphinx on anything more recent than SLE-15 (inclusive).- Update to 2.7.18, final release of Python 2. Ever.: - Newline characters have been escaped when performing uu encoding to prevent them from overflowing into to content section of the encoded file. This prevents malicious or accidental modification of data during the decoding process. - Fixes a ReDoS vulnerability in `http.cookiejar`. Patch by Ben Caller. - Fixed line numbers and column offsets for AST nodes for calls without arguments in decorators. - bsc#1155094 (CVE-2019-18348) Disallow control characters in hostnames in http.client. Such potentially malicious header injection URLs now cause a InvalidURL to be raised. - Fix urllib.urlretrieve failing on subsequent ftp transfers from the same host. - Fix problems identified by GCC's -Wstringop-truncation warning. - AddRefActCtx() was needlessly being checked for failure in PC/dl_nt.c. - Prevent failure of test_relative_path in test_py_compile on macOS Catalina. - Fixed possible leak in `PyArg_Parse` and similar functions for format units "es#" and "et#" when the macro `PY_SSIZE_T_CLEAN` is not defined. - Remove upstreamed patches: - CVE-2019-18348-CRLF_injection_via_host_part.patch - python-2.7.14-CVE-2017-1000158.patch - CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch - CVE-2018-1061-DOS-via-regexp-difflib.patch - CVE-2019-10160-netloc-port-regression.patch - CVE-2019-16056-email-parse-addr.patch- Add CVE-2019-9674-zip-bomb.patch to improve documentation warning about dangers of zip-bombs and other security problems with zipfile library. (bsc#1162825 CVE-2019-9674)- Change to Requires: libpython%{so_version} == %{version}-%{release} to python-base to keep both packages always synchronized (add %{so_version}) (bsc#1162224).- Add CVE-2020-8492-urllib-ReDoS.patch fixing the security bug "Python urrlib allowed an HTTP server to conduct Regular Expression Denial of Service (ReDoS)" (bsc#1162367)- Provide python-testsuite from devel subkg to ease py2->py3 dependencies- Add python-2.7.17-switch-off-failing-SSL-tests.patch to switch off tests coliding with the combination of modern Python and ancient OpenSSL on SLE-12.- libnsl is required only on more recent SLEs and openSUSE, older glibc supported NIS on its own.- Add provides in gdbm subpackage to provide dbm symbols. This allows us to use %%{python_module dbm} as a dependency and have it properly resolved for both python2 and python3- Drop appstream-glib BuildRequires and no longer call appstream-util validate-relax: eliminate a build cycle between as-glib and python. The only thing would would gain by calling as-uril is catching if upstream breaks the appdata.xml file in a future release. Considering py2 is dying, chances for a new release, let alone one breaking the xml file, are slim.- Unify packages among openSUSE:Factory and SLE versions. (bsc#1159035) ; add missing records to this changelog. - Add idle.desktop and idle.appdata.xml to provide IDLE in menus (bsc#1153830)- Add python2_split_startup Provide to make it possible to conflict older packages by shared-python-startup.- Move /etc/pythonstart script to shared-python-startup package.- Add bpo-36576-skip_tests_for_OpenSSL-111.patch (originally from bpo#36576) skipping tests failing with OpenSSL 1.1.1. Fixes bsc#1149792- Add adapted-from-F00251-change-user-install-location.patch fixing pip/distutils to install into /usr/local.- Update to 2.7.17: - a bug fix release in the Python 2.7.x series. It is expected to be the penultimate release for Python 2.7. - Removed patches included upstream: - CVE-2018-20852-cookie-domain-check.patch - CVE-2019-16935-xmlrpc-doc-server_title.patch - CVE-2019-9636-netloc-no-decompose-characters.patch - CVE-2019-9947-no-ctrl-char-http.patch - CVE-2019-9948-avoid_local-file.patch - python-2.7.14-CVE-2018-1000030-1.patch - python-2.7.14-CVE-2018-1000030-2.patch - Renamed remove-static-libpython.diff and python-bsddb6.diff to remove-static-libpython.patch and python-bsddb6.patch to unify filenames.- Add CVE-2019-16935-xmlrpc-doc-server_title.patch fixing bsc#1153238 (aka CVE-2019-16935) fixing a reflected XSS in python/Lib/DocXMLRPCServer.py- Add bpo36302-sort-module-sources.patch (boo#1041090)- Add CVE-2019-16056-email-parse-addr.patch fixing the email module wrongly parses email addresses [bsc#1149955, CVE-2019-16056]- boo#1141853 (CVE-2018-20852) add CVE-2018-20852-cookie-domain-check.patch fixing http.cookiejar.DefaultPolicy.domain_return_ok which did not correctly validate the domain: it could be tricked into sending cookies to the wrong server.- Skip test_urllib2_localnet that randomly fails in OBS- bsc#1138459: add CVE-2019-10160-netloc-port-regression.patch which fixes regression introduced by the previous patch. (CVE-2019-10160) Upstream gh#python/cpython#13812- Set _lto_cflags to nil as it will prevent to propage LTO for Python modules that are built in a separate package.- bsc#1130840 (CVE-2019-9947): add CVE-2019-9947-no-ctrl-char-http.patch Address the issue by disallowing URL paths with embedded whitespace or control characters through into the underlying http client request. Such potentially malicious header injection URLs now cause a ValueError to be raised.- bsc#1130847 (CVE-2019-9948) add CVE-2019-9948-avoid_local-file.patch removing unnecessary (and potentially harmful) URL scheme local-file://.- bsc#1129346: add CVE-2019-9636-netloc-no-decompose-characters.patch Characters in the netloc attribute that decompose under NFKC normalization (as used by the IDNA encoding) into any of ``/``, ``?``, ``#``, ``@``, or ``:`` will raise a ValueError. If the URL is decomposed before parsing, or is not a Unicode string, no error will be raised (CVE-2019-9636). Upstream commits e37ef41 and 507bd8c.- (bsc#1111793) Update to 2.7.16: * bugfix-only release: complete list of changes on https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.16rc1.rst * Removed openssl-111.patch and CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch which are fully included in the tarball. * Updated patches to apply cleanly: CVE-2019-5010-null-defer-x509-cert-DOS.patch bpo36160-init-sysconfig_vars.patch do-not-use-non-ascii-in-test_ssl.patch openssl-111-middlebox-compat.patch openssl-111-ssl_options.patch python-2.5.1-sqlite.patch python-2.6-gettext-plurals.patch python-2.7-dirs.patch python-2.7.2-fix_date_time_compiler.patch python-2.7.4-canonicalize2.patch python-2.7.5-multilib.patch python-2.7.9-ssl_ca_path.patch python-bsddb6.diff remove-static-libpython.patch * Update python-2.7.5-multilib.patch to pass with new platlib regime.- bsc#1109847 (CVE-2018-14647): add CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch fixing bpo-34623.- bsc#1073748: add bpo-29347-dereferencing-undefined-pointers.patch PyWeakref_NewProxy@Objects/weakrefobject.c creates new isntance of PyWeakReference struct and does not intialize wr_prev and wr_next of new isntance. These pointers can have garbage and point to random memory locations. Python should not crash while destroying the isntance created in the same interpreter function. As per my understanding, both wr_prev and wr_next of PyWeakReference instance should be initialized to NULL to avoid segfault.- bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch fixing bpo-35746 (CVE-2019-5010). An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.7.2. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability.- Use upstream-recommended %{_rpmconfigdir}/macros.d directory for the rpm macros.- Add patch openssl-111.patch to work with openssl-1.1.1 (bsc#1113755)- Apply "CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch" which converts shutil._call_external_zip to use subprocess rather than distutils.spawn. [bsc#1109663, CVE-2018-1000802]- Apply "CVE-2018-1061-DOS-via-regexp-difflib.patch" to prevent low-grade poplib REDOS (CVE-2018-1060) and to prevent difflib REDOS (CVE-2018-1061). Prior to this patch mail server's timestamp was susceptible to catastrophic backtracking on long evil response from the server. Also, it was susceptible to catastrophic backtracking, which was a potential DOS vector. [bsc#1088004 and bsc#1088009, CVE-2018-1061 and CVE-2018-1060]- Apply "CVE-2017-18207.patch" to add a check to Lib/wave.py that verifies that at least one channel is provided. Prior to this check, attackers could cause a denial of service (divide-by-zero error and application crash) via a crafted wav format audio file. [bsc#1083507, CVE-2017-18207]- Apply "python-sorted_tar.patch" (bsc#1086001, boo#1081750) sort tarfile output directory listing- update to 2.7.15 * dozens of bugfixes, see NEWS for details - removed obsolete patches: * python-ncurses-6.0-accessors.patch * python-fix-shebang.patch * gcc8-miscompilation-fix.patch - add patch from upstream: * do-not-use-non-ascii-in-test_ssl.patch- Add gcc8-miscompilation-fix.patch (boo#1084650).- Apply "python-2.7.14-CVE-2017-1000158.patch" to prevent integer overflows in PyString_DecodeEscape that could have resulted in heap-based buffer overflow attacks and possible arbitrary code execution. [bsc#1068664, CVE-2017-1000158]- exclude test_socket & test_subprocess for PowerPC boo#1078485 (same ref as previous change)- Add python-skip_random_failing_tests.patch bypass boo#1078485 and exclude many tests for PowerPC- Add patch python-fix-shebang.patch to fix bsc#1078326- exclude test_regrtest for s390, where it does not segfault as it should (fixes bsc#1073269) - fix segfault while creating weakref - bsc#1073748, bpo#29347 (this is actually fixed by the 2.7.14 update; mentioning this for purposes of bugfix tracking)- update to 2.7.14 * dozens of bugfixes, see NEWS for details * fixed possible integer overflow in PyString_DecodeEscape (CVE-2017-1000158, bsc#1068664) * fixed segfaults with dict mutated during search * fixed possible free-after-use problems with buffer objects with custom indexing * fixed urllib.splithost to correctly parse fragments (bpo-30500) - drop upstreamed python-2.7.13-overflow_check.patch - drop unneeded python-2.7.12-makeopcode.patch - drop upstreamed 0001-2.7-bpo-30714-ALPN-changes-for-OpenSSL-1.1.0f-3094.patch - Apply "python-2.7.14-CVE-2018-1000030-1.patch" and "python-2.7.14-CVE-2018-1000030-2.patch" to remedy a bug that would crash the Python interpreter when multiple threads used the same I/O stream concurrently. This issue is not classified as a security vulnerability due to the fact that an attacker must be able to run code, however in some situations -- such as function as a service -- this vulnerability can potentially be used by an attacker to violate a trust boundary. [bsc#1079300, CVE-2018-1000030]- Call python2 instead of python in macros- Fix test broken with OpenSSL 1.1 (bsc#1042670) * add 0001-2.7-bpo-30714-ALPN-changes-for-OpenSSL-1.1.0f-3094.patch- drop SUSE_ASNEEDED=0 as it is not needed anymore- Add libnsl-devel build requires for glibc obsoleting libnsl- obsolete/provide python-argparse and provide python2-argparse, because the argparse module is available from python 2.7 up- SLE package update (bsc#1027282) - refresh python-2.7.5-multilib.patch - dropped upstreamed patches: python-fix-short-dh.patch python-2.7.7-mhlib-linkcount.patch python-2.7-urllib2-localnet-ssl.patch CVE-2016-0772-smtplib-starttls.patch CVE-2016-5699-http-header-injection.patch CVE-2016-5636-zipimporter-overflow.patch python-2.7-httpoxy.patch - Add python-ncurses-6.0-accessors.patch: Fix build with NCurses 6.0 and OPAQUE_WINDOW set to 1. (dimstar@opensuse.org)- Add reproducible.patch to allow reproducible builds of various python packages like python-amqp Upstream: https://github.com/python/cpython/pull/296- update to 2.7.13 * dozens of bugfixes, see NEWS for details * updated cipher lists for openssl wrapper, support openssl >= 1.1.0 * properly fix HTTPoxy (CVE-2016-1000110) * profile-opt build now applies PGO to modules as well - update python-2.7.10-overflow_check.patch with python-2.7.13-overflow_check.patch, incorporating upstream changes (bnc#964182) - add "-fwrapv" to optflags explicitly because upstream code still relies on it in many places- provide python2-* symbols, for support of new packages built as python2-foo - rename macros.python to macros.python2 accordingly - require python-rpm-macros package, drop macro definitions from macros.python2- initial packaging of `python27` side-by-side variant (fate#321075, bsc#997436) - renamed `python` to `python27` in package names and requires - removed Provides and Obsoletes clauses - dropped SLE12-only patch python-2.7.9-sles-disable-verification-by-default.patch, companion sle_tls_checks_policy.py file and the python-strict-tls-checks subpackage - dropped profile files - removed /usr/bin/python and /usr/bin/python2, along with other unversioned aliases - rewrote macros file to enable stand-alone packages depending on py2.7 - re-included downloaded version of HTML documentation- update to 2.7.12 * dozens of bugfixes, see NEWS for details * fixes multiple security issues: CVE-2016-0772 TLS stripping attack on smtplib (bsc#984751) CVE-2016-5636 zipimporter heap overflow (bsc#985177) CVE-2016-5699 httplib header injection (bsc#985348) (this one is actually fixed since 2.7.10) - removed upstreamed python-2.7.7-mhlib-linkcount.patch - refreshed multilib patch - python-2.7.12-makeopcode.patch - run newly-built python interpreter to make opcodes, in order not to require pre-built python - update LD_LIBRARY_PATH to use $PWD instead of "." because the test process escapes to its own directory - modify shebang-fixing scriptlet to ignore makeopcodetargets.py- CVE-2016-0772-smtplib-starttls.patch: smtplib vulnerability opens startTLS stripping attack (CVE-2016-0772, bsc#984751) - CVE-2016-5636-zipimporter-overflow.patch: heap overflow when importing malformed zip files (CVE-2016-5636, bsc#985177) - CVE-2016-5699-http-header-injection.patch: incorrect validation of HTTP headers allow header injection (CVE-2016-5699, bsc#985348) - python-2.7-httpoxy.patch: HTTPoxy vulnerability in urllib, fixed by disregarding HTTP_PROXY when REQUEST_METHOD is also set (CVE-2016-1000110, bsc#989523)- Add python-2.7.10-overflow_check.patch to fix broken overflow checks. [bnc#964182]- copy strict-tls-checks subpackage from SLE to retain future compatibility (not built in openSUSE) - do this properly to fix bnc#945401 - update SLE check to exclude Leap which also has version 1315, just to be sure- Add python-ncurses-6.0-accessors.patch: Fix build with NCurses 6.0 and OPAQUE_WINDOW set to 1.- add missing ssl.pyc and ssl.pyo to package - implement python-strict-tls-checks subpackage * when present, Python will perform TLS certificate checking by default. it is possible to remove the package to turn off the checks for compatibility with legacy scripts. * as discussed in fate#318300 * this is not built for openSUSE, but retained here in case we want to build the package for a SLE system- python-fix-short-dh.patch: Bump DH parameters to 2048 bit to fix logjam security issue. bsc#935856- add __python2 compatibility macro (used by Fedora) (fate#318838)- update to 2.7.10 - removed obsolete python-2.7-urllib2-localnet-ssl.patch- Reenable test_posix on aarch64- python-2.7.4-aarch64.patch: Remove obsolete patch - python-2.7-libffi-aarch64.patch: Fix argument passing in libffi for aarch64- update to 2.7.9 * contains full backport of ssl module from Python 3.4 (PEP466) * HTTPS certificate validation enabled by default (PEP476) * SSLv3 disabled by default (bnc#901715) * backported ensurepip module (PEP477) * fixes several missing CVEs from last release: CVE-2013-1752, CVE-2013-1753 * dozens of minor bugfixes - dropped upstreamed patches: python-2.7.6-poplib.patch, smtplib_maxline-2.7.patch, xmlrpc_gzip_27.patch - dropped patch python-2.7.3-ssl_ca_path.patch because we don't need it with ssl module from Python 3 - libffi was upgraded upstream, seems to contain our changes, so dropping libffi-ppc64le.diff as well - python-2.7-urllib2-localnet-ssl.patch - properly remove unconditional "import ssl" from test_urllib2_localnet that caused it to fail without ssl- skip test_thread in qemu_linux_user mode/bin/sh  !"#$%&'()*+,-./0123456789:;<2.7.18-lp152.3.21.12.7.18-lp152.3.21.1python2.7lib-dynload_bisect.so_codecs_cn.so_codecs_hk.so_codecs_iso2022.so_codecs_jp.so_codecs_kr.so_codecs_tw.so_collections.so_csv.so_ctypes.so_ctypes_test.so_elementtree.so_functools.so_heapq.so_hotshot.so_io.so_json.so_locale.so_lsprof.so_md5.so_multibytecodec.so_multiprocessing.so_random.so_sha.so_sha256.so_sha512.so_socket.so_struct.so_testcapi.soarray.soaudioop.sobinascii.sobz2.socPickle.socStringIO.socmath.socrypt.sodatetime.sofcntl.sofuture_builtins.sogrp.soitertools.solinuxaudiodev.somath.sommap.sonis.sooperator.soossaudiodev.soparser.soresource.soselect.sospwd.sostrop.sosyslog.sotermios.sotime.sounicodedata.sozlib.so/usr/lib64//usr/lib64/python2.7//usr/lib64/python2.7/lib-dynload/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17077/openSUSE_Leap_15.2_Update_ports/101b06c9c9aec0555f3476fdda47349d-python-base.openSUSE_Leap_15.2_Updatedrpmxz5aarch64_ilp32-suse-linux  !"#$%&'()*+,-./0123456789:directoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=70b85209fcc62c183064e48750cea40dcb726989, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0909f3be2999701dc4830b5199f91a1dfe6baff7, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ecc4cce77f4cf18407acbda4cb15abff4aa810c6, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=069a077502875fe3a8a68fe7398ec2cf39c57374, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=42cf461e3b695d06c9a22451c6eb251d9b886ca2, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=eba063bf1c43d756931d86d3ed3779e7e3faff68, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2cef3f3b35a87fa8b70f4bc1e3c79397fec7112f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9ef015f9e75b49d0ce6c5f8e0a76982e34b8036c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=15fb24e20e4d9c70845706093b47e2badc98bbed, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8603435af46183454ec549c3f245c1ab6101c35b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=994956289239cd0ad9df978471e992f6424cda36, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9a31176d764f5b5806d1c976cac608b58e5ac91a, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d08028481229d1d51442eea51c616c4f1d69eacc, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=25b16f2579cd7f199c3d9942845fc1fae8663917, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8448a51fb60ddc9b2bab2837081a28b137988cb2, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=fc076d61422d0f53b82b0efd8ea793952ae3c87c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d7868b4ef474935dd78df548cbf11ca79c3d29d8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4d161a25e2aa6a3f8a8eda9ea07a7d4be7f5d04a, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4d4063a2fa247990b6b719642d869d78e189c596, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b47b48cb7625da574e66febf2c36277410a8d15d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=28d01d6725b2f735ae8bc7e6f8d119007c64b80a, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=58bd061b550d965c48055be977b91e70a9a21784, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a7d1e6fa0baa377694f808d7544b2054f4e41d88, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=827113cf55fb8138e30a0fe87e7f9a2ed47ec838, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=59edf004a6f3add55173fe14be2ee2941bcfd857, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7e7e94a43bcc91492cb614950cb85b67b65d71b0, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4add0af58c489fffd74ada7fae11346c58c71bc2, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9154d5ea30629d2176839feb819d42f98616909b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b7ec4d755611c31207938216144551c36b340419, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8c00d56928e1aff7da5b5c6a59997fcc5fccf254, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c25ffeb55986a50a24c006c4a1c27cd2425ba718, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=09c1b4f9c6149b74e4778ef25f4b6521b80b2a5e, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e3edf9d6e6a8afa8c5c6f8cdd595cb60eae5d4b1, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5f317bfbf7062530bb64f001adcb4b2169aa1522, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=28f6c878fead34f96966a3f67b39ca3d61ed4328, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=65c9c7506a5c2e4775ef458b7d84328c30a4e065, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=59cf9b9f57eb500e783241954c73ed798f9739c6, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=347e43ea61f158ea9adc17c0ab1033460abaaeaa, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=501400eec170d5ef6265ac4819ac6af476510488, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=724d668c8054c80a58169be6b34ef9636c07a3ea, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=cf1557b0727c31a939329433fad41823c52b362b, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=83a69326b2110f10d9ee0db45db081aa4628b643, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=35057348c1b9583deebf280897ae48b41e8d600c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=016e484814aa111d77805957bcb687ca8517fcd4, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=dcffbbf88ce1ef1951333290df7041fde51406a3, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=38a7ba06f7e965896c6e8db8f97f7f617747fef5, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7024c5e3d15fb76f8b8c4094cf340867b01c85eb, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a71a1884a45bb81a2f0740c31d0863c46cc05e0f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=4d101188c2df9f69f061964332c33f20e5951dcd, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b8ab3e1fe03ace4aacdaf579af7d23261a339da8, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f15bd6d786471e6b05d4507f14b3aa0d15ec5c59, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=181c5fb7219140af82679caa6289f99c56377660, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=cc6082e00364809d0f13100dfb2479cf5db3cead, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8f4d3d8201da4d7dd2a240506eee24bd0a000b2d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7f5897f274f8481bb27d7619a3783c08b61ccd7f, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7c74c881ea777c71d7413734a6fb6c9f9e499dfb, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=52097f52eaff2b182e5c9d8b06fe3b626ed84608, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=69308a78002a9a125cd19f68557deeb4d85f348b, stripped#*18?GNU\cjry %,3:BLT_fnu}      RRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRR RRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRR RRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRRR RRR RRRRRRR RRRRRRR RRRRRRR RRRRRRR RRRR RR RRRR RRRRRRR RRRRR RRR RRRRRRR RRRRRRR RRRRRRRR RRRRRRRR RRRR RRRR RRRR RRRR RRRR RRR RRR RRRRRRRRR RRRR R RRRRR RRRR RRRR RRRRRRR RRRRRRR RRRRRRR RRRRR RRR RRRR RR RRRR RRRRR RRR RRRRR RRR RRR RRRRRRR RRRRR RRR RRRRRRR RRRR RRRR RRRRR RRR RRRRRRR RRRR RRRR RRRRRRR RRRRR RRR RRRR R RRRRR RRRRRRR RRRRRRRRR RRutf-81b01df4398aa25ebc45f224da26fe12812a53b1c2b09c523e634e73b46af25b0? 7zXZ !t/ ( ]"k%a C4uwʢ#TLh\QL$%fa`"- !B1{;N+p[j|WjQ9s af]ܕ6&}G/3=j (.R pC['O#IU6Ṁ 4$#H~uRlCųEh$[V@_\t堎^V#$ rI<8SgVf{M>a_|?`0! M@yYtWC2s %٠2G`rAF*%3 -ǮPO'OK2zektt( QPI#~>@DK'Ƿgq #kqp0WǷ7ZbL:v0t=EbOX wsuš+g# R.Zʠ;*۞?%Hh{'pM 7;qb(}Lky87m2{4eSP( Xt 1-{Oy3Zi/hym i8/Bpl`[KzL5,%+R"V|Y~ Ք'//b*rPFNJyX5>;Zn_y]q{zWOkCAa~ O`88z{EgDEh\qg趌4Fa*w4_D{>aKn YNc3Z TM`-[)-Z1=jV忄[ח#"ϏXs+tZ6ߦC/"^U fޅi2hr#9nY T1Exg.dcc^VrGwܟS\2Cy+/𴤎.HrBާe` s1=ͣ8saɠwbȒuX eߐh* ~"s-D^Is/q +|ſ4Vm'~U`w7=/qTnL'Y[!47DT8)puoShNf '0.jUcJ\ys*0g!KuZˍ  h7~ l6t-q}#9̕7Գ3Ҁj-E:̥lIi58t k$~ >*ќs%^A>rlЌ Y_AHW 9UApIotr+bCdb%B/&o|`M[L>.៧{Ww~b;e.2>Ebg1=;sNBB`y;PZ&3vJ4LCTcbm9ְ^}H 5ᕵy0DV+h&/8?Li1X} դCv#7xp:jZń—k + EdObk4+a"VX>\us!Vucr;9֪)Hm2j@ BZ !߮FaSEDyDSWNo|u^dT _.qro+2'_k* lU -V|8'}PeaIY<&0K^/@||ѡ_1^ oA[$7YMBa6n-GGK.'^3(楃 Z"猘Y۵306 ^!H1LFȔ0{iz,>c"%s>J@dv#ݚWjGiXg`LGqP&9]-]k$=yğ߹K>2 rVs<(-•1%?̖!(>DNjY$-gޡfZua\Ht&p*SI"M>*F?z&w J)nzVo%i5 2B勂֜Bk6T^xIOn'p'{rtڧjآ I_*ac83JGR1(Eʓ!9MQ\!Q> s NVS-f-9JXdLc ~n<s_㌕ڰdovz1K9tp 4+RM J 4lr*~ ў pvF`b]H V72ܘ 0jKS#L=R H4'm