--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2020-b1046cc65d
2020-03-03 19:35:32.759185
--------------------------------------------------------------------------------
Name : python-colander
Product : Fedora EPEL 7
Version : 1.7.0
Release : 1.el7
URL :
https://pypi.python.org/pypi/colander
Summary : A simple schema-based serialization and deserialization library
Description :
An extensible package which can be used to:
- deserialize and validate a data structure composed of strings, mappings,
and lists.
- serialize an arbitrary data structure to a data structure composed of
strings, mappings, and lists.
Please see
http://docs.pylonsproject.org/projects/colander/en/latest/ for
further documentation.
--------------------------------------------------------------------------------
Update Information:
Update to 1.7.0 to fix CVE-2017-18361
--------------------------------------------------------------------------------
ChangeLog:
* Sun Feb 16 2020 Kevin Fenzi <kevin(a)scrye.com> - 1.7.0-1
- Update to 1.7.0. Fixes CVE-2017-18361 (bug #1671859)
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.0b1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed May 14 2014 Bohuslav Kabrda <bkabrda(a)redhat.com> - 1.0b1-2
- Rebuilt for
https://fedoraproject.org/wiki/Changes/Python_3.4
* Wed Jan 29 2014 Ralph Bean <rbean(a)redhat.com> - 1.0b1-1
- Latest upstream.
- Enabled python3 subpackage.
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.0a2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Apr 10 2013 Ralph Bean <rbean(a)redhat.com> - 1.0a2-1
- Latest upstream.
- Modernized python3 conditional.
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.9.9-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Fri Dec 7 2012 Ralph Bean <rbean(a)redhat.com> - 0.9.9-2
- Remove the hidden static folder in the docs directory at prep time.
* Fri Dec 7 2012 Ralph Bean <rbean(a)redhat.com> - 0.9.9-1
- Initial packaging for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1671859 - CVE-2017-18361 python-colander: infinite loop in the URL validator
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1671859
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update python-colander' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\
/html/System_Administrators_Guide/ch-yum.html
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------