-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 30 Nov 2024 23:22:50 +0200
Source: python3.11
Architecture: source
Version: 3.11.2-6+deb12u5
Distribution: bookworm
Urgency: medium
Maintainer: Matthias Klose <doko@debian.org>
Changed-By: Adrian Bunk <bunk@debian.org>
Closes: 1059298
Changes:
 python3.11 (3.11.2-6+deb12u5) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-27043: Reject malformed addresses in email.parseaddr()
     (Closes: #1059298)
   * CVE-2024-6923: Encode newlines in headers in the email module
   * CVE-2024-7592: Quadratic complexity parsing cookies with backslashes
   * CVE-2024-9287: venv activation scripts did't quote paths
   * CVE-2024-11168: urllib functions improperly validated bracketed hosts
Checksums-Sha1:
 8ff5516eccafe560bcffac84a609d45bc126ce6c 3643 python3.11_3.11.2-6+deb12u5.dsc
 54d04be4309e6fb445477dd0ae2ac548cee473e7 26437858 python3.11_3.11.2.orig.tar.gz
 dcce545bf3d35ae84ded48702c3c15233dff3af8 246180 python3.11_3.11.2-6+deb12u5.debian.tar.xz
Checksums-Sha256:
 07085f4b51e084ee123e1f8f3940737a53c34bcb08e3f86e434e347dd6ebc921 3643 python3.11_3.11.2-6+deb12u5.dsc
 2411c74bda5bbcfcddaf4531f66d1adc73f247f529aee981b029513aefdbf849 26437858 python3.11_3.11.2.orig.tar.gz
 ae9d60f3bc057f3779eb7bc4f08c9c236a7e718fe4af5f29f10460d3220c280b 246180 python3.11_3.11.2-6+deb12u5.debian.tar.xz
Files:
 548666d11dd29ef3ce90f744abaf3c03 3643 python optional python3.11_3.11.2-6+deb12u5.dsc
 f6b5226ccba5ae1ca9376aaba0b0f673 26437858 python optional python3.11_3.11.2.orig.tar.gz
 5801aac32291b4e1535253cb25b112d3 246180 python optional python3.11_3.11.2-6+deb12u5.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=bpWp
-----END PGP SIGNATURE-----