packages/python-requests
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

!60 [sync] PR-59: fix CVE-2024-1682

Browse Source 
From: @openeuler-sync-bot 
Reviewed-by: @sunsuwan 
Signed-off-by: @sunsuwan
This commit is contained in:
openeuler-ci-bot 2024-11-20 08:35:50 +00:00 committed by Gitee
commit b11f80dbf8
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
2 changed files with 45 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
backport-CVE-2024-1682.patch Normal file
View File

@ -0,0 +1,40 @@
From 6106a63eb6c0fa490efa73d44388ac25b1b08af4 Mon Sep 17 00:00:00 2001
From: Nate Prewitt <nate.prewitt@gmail.com>
Date: Tue, 20 Feb 2024 11:58:35 -0800
Subject: [PATCH] Cleanup defunct links from community docs page
Reference:https://github.com/psf/requests/commit/6106a63eb6c0fa490efa73d44388ac25b1b08af4
Conflict:NA
---
docs/community/out-there.rst | 14 +-------------
1 file changed, 1 insertion(+), 13 deletions(-)
diff --git a/docs/community/out-there.rst b/docs/community/out-there.rst
index c33ab3c95b..c75c71f6a2 100644
--- a/docs/community/out-there.rst
+++ b/docs/community/out-there.rst
@@ -1,22 +1,10 @@
Integrations
============
-Python for iOS
---------------
-
-Requests is built into the wonderful `Python for iOS <https://itunes.apple.com/us/app/python-2.7-for-ios/id485729872?mt=Python8>`_ runtime!
-
-To give it a try, simply::
-
- import requests
-
-
Articles & Talks
================
-- `Python for the Web <https://www.gun.io/blog/python-for-the-web>`_ teaches how to use Python to interact with the web, using Requests.
- `Daniel Greenfeld's Review of Requests <https://pydanny.blogspot.com/2011/05/python-http-requests-for-humans.html>`_
-- `My 'Python for Humans' talk <http://python-for-humans.heroku.com>`_ ( `audio <https://codeconf.s3.amazonaws.com/2011/pycodeconf/talks/PyCodeConf2011%20-%20Kenneth%20Reitz.m4a>`_ )
-- `Issac Kelly's 'Consuming Web APIs' talk <https://issackelly.github.com/Consuming-Web-APIs-with-Python-Talk/slides/slides.html>`_
+- `Issac Kelly's 'Consuming Web APIs' talk <https://issackelly.github.io/Consuming-Web-APIs-with-Python-Talk/slides/slides.html>`_
- `Blog post about Requests via Yum <https://arunsag.wordpress.com/2011/08/17/new-package-python-requests-http-for-humans/>`_
- `Russian blog post introducing Requests <https://habr.com/post/126262/>`_
- `Sending JSON in Requests <http://www.coglib.com/~icordasc/blog/2014/11/sending-json-in-requests.html>`_

6
python-requests.spec
View File

@ -2,7 +2,7 @@
Name: python-requests Name: python-requests
Version: 2.26.0 Version: 2.26.0
Release: 8 Release: 9
Summary: Python HTTP Library Summary: Python HTTP Library
License: ASL 2.0 License: ASL 2.0
URL: http://python-requests.org/ URL: http://python-requests.org/
@ -14,6 +14,7 @@ Patch3: patch-requests-certs.py-to-use-the-system-CA-bundle.patch
Patch4: Remove-tests-that-use-the-tarpit.patch Patch4: Remove-tests-that-use-the-tarpit.patch
Patch5: Update-dependency-with-chardet.patch Patch5: Update-dependency-with-chardet.patch
Patch6000: backport-CVE-2023-32681.patch Patch6000: backport-CVE-2023-32681.patch
Patch6001: backport-CVE-2024-1682.patch
BuildArch: noarch BuildArch: noarch
@ -97,6 +98,9 @@ PYTHONPATH=%{buildroot}%{python3_sitelib} %{__python3} -m pytest -v
%doc HISTORY.md README.md %doc HISTORY.md README.md
%changelog %changelog
* Mon Nov 18 2024 zhangpan <zhangpan103@h-partners.com> - 2.26.0-9
- fix CVE-2024-1682
* Wed May 31 2023 zhangpan <zhangpan103@h-partners.com> - 2.26.0-8 * Wed May 31 2023 zhangpan <zhangpan103@h-partners.com> - 2.26.0-8
- fix CVE-2023-32681 - fix CVE-2023-32681