[issue8569] Upgrade OpenSSL in Windows builds

2010-11-20 Thread Brian Curtin
Changes by Brian Curtin : -- stage: -> committed/rejected ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http:

[issue8569] Upgrade OpenSSL in Windows builds

2010-11-20 Thread Brian Curtin
Brian Curtin added the comment: Closing - OpenSSL was upgraded to version 1.0.0a a few months ago. -- resolution: -> out of date status: open -> closed ___ Python tracker ___ __

[issue8569] Upgrade OpenSSL in Windows builds

2010-04-29 Thread Martin v . Löwis
Changes by Martin v. Löwis : -- priority: critical -> normal ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: htt

[issue8569] Upgrade OpenSSL in Windows builds

2010-04-29 Thread Martin v . Löwis
Martin v. Löwis added the comment: IIUC, Python is not affected by this security issue. 'short' is a 16-bit integer, so it only affects 0.9.8m, which isn't being used by Python. Therefore, from a security point of view, no action needs to be taken. I don't think upgrading OpenSSL is appropria

[issue8569] Upgrade OpenSSL in Windows builds

2010-04-29 Thread Giampaolo Rodola'
Changes by Giampaolo Rodola' : -- nosy: +giampaolo.rodola ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http:/

[issue8569] Upgrade OpenSSL in Windows builds

2010-04-29 Thread Brian Curtin
Brian Curtin added the comment: Tools/buildbot/external-common.bat does the checkout of OpenSSL 0.9.8l from svn.python.org/projects/external. What does it take to put a new 1.x version out there? -- ___ Python tracker

[issue8569] Upgrade OpenSSL in Windows builds

2010-04-29 Thread Jean-Paul Calderone
Jean-Paul Calderone added the comment: http://www.openssl.org/news/secadv_20100324.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555 New Windows builds of any versions of CPython which are still receiving security updates should be released. -- nosy: +exarkun priority: n

[issue8569] Upgrade OpenSSL in Windows builds

2010-04-29 Thread Antoine Pitrou
New submission from Antoine Pitrou : I don't know how official installers are built, but the standard build procedure with the Visual Studio files uses a custom checkout of OpenSSL 0.9.8l. OpenSSL is now at version 1.0.x, which adds security fixes and improvements. I'd suggest upgrade the "cu