Security fixes from 3.11.13 / new release #5290

mgorny · 2025-06-04T02:56:32Z

CPython 3.11.13 has been released with a bunch of security fixes. I've confirmed that at least the stdlib fixes apply to PyPy. There's also a bunch of fixes in py3.11 branch already — could we sync stdlib and make a new release, please?

For reference, my current patchset: https://gitweb.gentoo.org/fork/pypy.git/log/?h=gentoo-3.11-7.3.19_p10

Need to double check https://gitweb.gentoo.org/fork/pypy.git/commit/?h=gentoo-3.11-7.3.19_p10&id=a6247597c07852a29234c19051d05b76ffcd036a / #5232

mattip · 2025-06-04T05:38:25Z

Let's see what a PR to update the stdlib looks like, if there are any real meaningful security fixes. It seems from what I can see that the fixes are minor. There is also an update of the embedded libexpat and a tweak to _ssl error reporting (git diff on the Modules library).

mattip · 2025-06-04T17:38:19Z

I pushed a change to py3.11 in 5837f86.

mgorny · 2025-06-04T17:51:11Z

Thanks!

mgorny · 2025-06-04T17:56:27Z

Need to double check https://gitweb.gentoo.org/fork/pypy.git/commit/?h=gentoo-3.11-7.3.19_p10&id=a6247597c07852a29234c19051d05b76ffcd036a / #5232

Just checked, this looks okay in nightly.

mattip · 2025-06-14T18:00:22Z

Closing as complete

mattip closed this as completed Jun 14, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Security fixes from 3.11.13 / new release #5290

Security fixes from 3.11.13 / new release #5290

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Security fixes from 3.11.13 / new release #5290

Security fixes from 3.11.13 / new release #5290

Comments

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!