-
-
Notifications
You must be signed in to change notification settings - Fork 30.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
gh-111239: Update Windows build to use zlib 1.3.1 #114877
Conversation
!buildbot windows |
🤖 New build scheduled with the buildbot fleet by @zware for commit 610b217 🤖 The command will test the builders whose names match following regular expression: The builders matched are:
|
Thanks @zware for the PR 🌮🎉.. I'm working now to backport this PR to: 3.12. |
) (cherry picked from commit 618d725) Co-authored-by: Zachary Ware <[email protected]>
GH-115076 is a backport of this pull request to the 3.12 branch. |
Thanks @zware for the PR 🌮🎉.. I'm working now to backport this PR to: 3.8. |
Thanks @zware for the PR 🌮🎉.. I'm working now to backport this PR to: 3.9. |
Thanks @zware for the PR 🌮🎉.. I'm working now to backport this PR to: 3.10. |
Thanks @zware for the PR 🌮🎉.. I'm working now to backport this PR to: 3.11. |
Sorry, @zware, I could not cleanly backport this to
|
Sorry, @zware, I could not cleanly backport this to
|
) (cherry picked from commit 618d725) Co-authored-by: Zachary Ware <[email protected]>
GH-115079 is a backport of this pull request to the 3.10 branch. |
…GH-114877) (cherry picked from commit 618d725) Co-authored-by: Zachary Ware <[email protected]>
GH-115087 is a backport of this pull request to the 3.9 branch. |
|
|
|
|
…H-115087) (cherry picked from commit 618d725) Co-authored-by: Zachary Ware <[email protected]>
…115086) (cherry picked from commit 618d725) Co-authored-by: Zachary Ware <[email protected]>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
zlib v1.3.1 fixes CVE-2023-45853, which does not affect CPython.
Edit: Apparently that CVE has been updated to point at
pyminizip
rather thanzlib
itself, at least in GitHub. Either way, this update brings us up to date and removes the possibility of someone complaining that we're using an insecure version of zlib :)