python3: upgrade to 3.10.13

Release date: 2023-08-24 Security gh-108310: Fixed an issue where instances of ssl.SSLSocket were vulnerable to a bypass of the TLS handshake and included protections (like certificate verification) and treating sent unencrypted data as if it were post-handshake TLS encrypted data. Security issue reported as CVE-2023-40217 by Aapo Oksman. Patch by Gregory P. Smith. Library gh-107845: tarfile.data_filter() now takes the location of symlinks into account when determining their target, so it will no longer reject some valid tarballs with LinkOutsideDestinationError. Tools/Demos gh-107565: Update multissltests and GitHub CI workflows to use OpenSSL 1.1.1v, 3.0.10, and 3.1.2. C API gh-99612: Fix PyUnicode_DecodeUTF8Stateful() for ASCII-only data: *consumed was not set. (From OE-Core rev: a30e51b8d13912f0d68bfffcd2d8ae6431d2b863) Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Chee Yang Lee <chee.yang.lee@intel.com> 2023-09-04 18:18:23 +0800
committer: Steve Sakoman <steve@sakoman.com> 2023-09-08 16:09:41 -1000
commit: 0fb3fd0a0d9fbfeafb87ec6b63974f82c49d667c (patch)
tree: 269f8e6e3ce5428b8db7a757ccedcaa0b58368db
parent: f1de33df8b920c4a48e28797d83b152a7cb0c1c6 (diff)
download: poky-0fb3fd0a0d9fbfeafb87ec6b63974f82c49d667c.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/meta/recipes-devtools/python/python3_3.10.12.bb b/meta/recipes-devtools/python/python3_3.10.13.bb
index 74f1defc95..ba53a09ef5 100644
--- a/meta/recipes-devtools/python/python3_3.10.12.bb
+++ b/meta/recipes-devtools/python/python3_3.10.13.bb
@@ -43,7 +43,7 @@ SRC_URI:append:class-native = " \
           file://12-distutils-prefix-is-inside-staging-area.patch \
           file://0001-Don-t-search-system-for-headers-libraries.patch \
           "
-SRC_URI[sha256sum] = "afb74bf19130e7a47d10312c8f5e784f24e0527981eab68e20546cfb865830b8"
+SRC_URI[sha256sum] = "5c88848668640d3e152b35b4536ef1c23b2ca4bd2c957ef1ecbb053f571dd3f6"
 # exclude pre-releases for both python 2.x and 3.x
 UPSTREAM_CHECK_REGEX = "[Pp]ython-(?P<pver>\d+(\.\d+)+).tar"
author	Chee Yang Lee <chee.yang.lee@intel.com>	2023-09-04 18:18:23 +0800
committer	Steve Sakoman <steve@sakoman.com>	2023-09-08 16:09:41 -1000
commit	0fb3fd0a0d9fbfeafb87ec6b63974f82c49d667c (patch)
tree	269f8e6e3ce5428b8db7a757ccedcaa0b58368db
parent	f1de33df8b920c4a48e28797d83b152a7cb0c1c6 (diff)
download	poky-0fb3fd0a0d9fbfeafb87ec6b63974f82c49d667c.tar.gz

diff --git a/meta/recipes-devtools/python/python3_3.10.12.bb b/meta/recipes-devtools/python/python3_3.10.13.bb index 74f1defc95..ba53a09ef5 100644 --- a/meta/recipes-devtools/python/python3_3.10.12.bb +++ b/meta/recipes-devtools/python/python3_3.10.13.bb
@@ -43,7 +43,7 @@ SRC_URI:append:class-native = " \
43	file://12-distutils-prefix-is-inside-staging-area.patch \	43	file://12-distutils-prefix-is-inside-staging-area.patch \
44	file://0001-Don-t-search-system-for-headers-libraries.patch \	44	file://0001-Don-t-search-system-for-headers-libraries.patch \
45	"	45	"
46	SRC_URI[sha256sum] = "afb74bf19130e7a47d10312c8f5e784f24e0527981eab68e20546cfb865830b8"	46	SRC_URI[sha256sum] = "5c88848668640d3e152b35b4536ef1c23b2ca4bd2c957ef1ecbb053f571dd3f6"
47		47
48	# exclude pre-releases for both python 2.x and 3.x	48	# exclude pre-releases for both python 2.x and 3.x
49	UPSTREAM_CHECK_REGEX = "[Pp]ython-(?P<pver>\d+(\.\d+)+).tar"	49	UPSTREAM_CHECK_REGEX = "[Pp]ython-(?P<pver>\d+(\.\d+)+).tar"