-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 08 Apr 2026 08:58:00 +0700
Source: python3.11
Binary: libpython3.11 libpython3.11-dbg libpython3.11-dev libpython3.11-minimal libpython3.11-stdlib python3.11 python3.11-dbg python3.11-dev python3.11-full python3.11-minimal python3.11-nopie python3.11-venv
Architecture: s390x
Version: 3.11.2-6+deb12u7
Distribution: bookworm
Urgency: medium
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Arnaud Rebillout <arnaudr@debian.org>
Description:
 libpython3.11 - Shared Python runtime library (version 3.11)
 libpython3.11-dbg - Debug Build of the Python Interpreter (version 3.11)
 libpython3.11-dev - Header files and a static library for Python (v3.11)
 libpython3.11-minimal - Minimal subset of the Python language (version 3.11)
 libpython3.11-stdlib - Interactive high-level object-oriented language (standard library
 python3.11 - Interactive high-level object-oriented language (version 3.11)
 python3.11-dbg - Debug Build of the Python Interpreter (version 3.11)
 python3.11-dev - Header files and a static library for Python (v3.11)
 python3.11-full - Python Interpreter with complete class library (version 3.11)
 python3.11-minimal - Minimal subset of the Python language (version 3.11)
 python3.11-nopie - Python interpreter linked without PIE (version 3.11)
 python3.11-venv - Interactive high-level object-oriented language (pyvenv binary, v
Changes:
 python3.11 (3.11.2-6+deb12u7) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Apply upstream patches for the following CVEs:
     - CVE-2025-4516: issue in bytes.decode("unicode_escape",
       error="ignore|replace")
     - CVE-2025-6069: quadratic complexity in html.parser.HTMLParser
     - CVE-2025-6075: performance degradation in os.path.expandvars()
     - CVE-2025-8194: infinite loop and deadlock in tarfile
     - CVE-2025-8291: incorrect ZIP64 End of Central Directory handling
     - CVE-2025-11468: Folding email comments of unfoldable characters
       didn't preserve parenthesis which could be abused.
     - CVE-2025-12084: quadratic complexity in xml.dom.minidom appendChild etc
     - CVE-2025-13836: OOM or other DoS due to incorrect Content-Length
       handling in http.client
     - CVE-2025-13837: OOM or other DoS due to incorrect data size handling
       in plistlib
     - CVE-2025-15282: User-controlled data URLs parsed by urllib allowed
       injecting headers through newlines in the data URL mediatype.
     - CVE-2026-0672: User-controlled cookie values and parameters could be
       used to inject HTTP headers into messages.
     - CVE-2026-0865: User-controlled header names and values containing
       newlines could be used to inject HTTP headers.
     - CVE-2026-1299: email module allowed header injection in the
       BytesGenerator class.
Checksums-Sha1:
 a1e41362ffdd46a3b739f84b78389343767af072 15990812 libpython3.11-dbg_3.11.2-6+deb12u7_s390x.deb
 c3a3736d7175beab80fe8f5fa47bf574463824c3 4296948 libpython3.11-dev_3.11.2-6+deb12u7_s390x.deb
 075a96acb74fc816f9eb0fd0f344d23bcaaacbe5 809932 libpython3.11-minimal_3.11.2-6+deb12u7_s390x.deb
 20dc4fa9322a5d1c08a008cd15e07d6423442cf5 1732808 libpython3.11-stdlib_3.11.2-6+deb12u7_s390x.deb
 666cca1428d5fdff808ca5a7502ad08e16192a6f 1807516 libpython3.11_3.11.2-6+deb12u7_s390x.deb
 a8ec745653c3c3ca0a622ccd9fc76a14931daff1 36388668 python3.11-dbg_3.11.2-6+deb12u7_s390x.deb
 6286d434fda5598cb3005d062e39986a35ac7d3e 613072 python3.11-dev_3.11.2-6+deb12u7_s390x.deb
 4a3f76ca9e74e8b08942cc34bf2ebad3c8536b02 1296 python3.11-full_3.11.2-6+deb12u7_s390x.deb
 bfcb9781a2c7c7abc421da992f855184469479ad 1829964 python3.11-minimal_3.11.2-6+deb12u7_s390x.deb
 118294186c0e57f9cc4ffd1da8657ac9b7019635 1822996 python3.11-nopie_3.11.2-6+deb12u7_s390x.deb
 330c32c470eafb21df5d95a08d0932dbddb66162 5892 python3.11-venv_3.11.2-6+deb12u7_s390x.deb
 0a71d6091428a5a7c558da4a3081847ffb9a908b 13424 python3.11_3.11.2-6+deb12u7_s390x-buildd.buildinfo
 48f196da5a705000cb53b030768c08b906da9df1 573816 python3.11_3.11.2-6+deb12u7_s390x.deb
Checksums-Sha256:
 949b81d83394377846f43f50884575fde57b7e8ca689effd7b29ecbf642c8948 15990812 libpython3.11-dbg_3.11.2-6+deb12u7_s390x.deb
 79ab31186bdc046d3a7143bade2e89d919d737e056da98860e497fb56e22e249 4296948 libpython3.11-dev_3.11.2-6+deb12u7_s390x.deb
 507992bc90ed331522120817fd7564e0db9bb3a8ebd55ca1b94ca4bb1f259df0 809932 libpython3.11-minimal_3.11.2-6+deb12u7_s390x.deb
 fcf67cf726110bda84cf3e4cd0f3ba54030d5ecc7aa9d20f96bf6e90dafa4b1a 1732808 libpython3.11-stdlib_3.11.2-6+deb12u7_s390x.deb
 fcf5f0c4560885842e8553f573b40586adaebdf1e90818ae30cec353927f378b 1807516 libpython3.11_3.11.2-6+deb12u7_s390x.deb
 1d0df51f885d430bfba0f1f299d0c8f5b6af91b7e3e0cb87fa880cd573f96266 36388668 python3.11-dbg_3.11.2-6+deb12u7_s390x.deb
 fe55e11339935e1a1f7860ed6e694bb50e2ceef58e9b58382c730ff6d18bd3c8 613072 python3.11-dev_3.11.2-6+deb12u7_s390x.deb
 f782d25c4133bfa35cd639574d2977a02805db7154366e16d6e17c1fd9448528 1296 python3.11-full_3.11.2-6+deb12u7_s390x.deb
 8b32679c9220f52f814b9a79dd17f0ecac52e4e1229ee5c1b48b938b60869782 1829964 python3.11-minimal_3.11.2-6+deb12u7_s390x.deb
 6d1118314f8ab93654edcbbfe568516e1f64ee24c1b27616fc6c10ccc0836a61 1822996 python3.11-nopie_3.11.2-6+deb12u7_s390x.deb
 5baf5cf6bd525ca3b8a6e5fbc41b761a843b6fe8fcc6a9b4a53788e3c98cb582 5892 python3.11-venv_3.11.2-6+deb12u7_s390x.deb
 243ac5a04b91d77a24dde18d16b934e8a82cf0e9c313393fdc84467959a46c98 13424 python3.11_3.11.2-6+deb12u7_s390x-buildd.buildinfo
 04e047f2a7764f173c3b2cb9469ba07a950a27b9597c196b3942435e8cafa771 573816 python3.11_3.11.2-6+deb12u7_s390x.deb
Files:
 3fda2385b889decfb2cb8e22891b77c2 15990812 debug optional libpython3.11-dbg_3.11.2-6+deb12u7_s390x.deb
 2af2271469df5f22657b9b24d70d4128 4296948 libdevel optional libpython3.11-dev_3.11.2-6+deb12u7_s390x.deb
 c9a4336d1903989482176952d4621134 809932 python optional libpython3.11-minimal_3.11.2-6+deb12u7_s390x.deb
 d85b1eb2b632add278830edbd970dcc4 1732808 python optional libpython3.11-stdlib_3.11.2-6+deb12u7_s390x.deb
 1795dc15ba6c85bb1629cfcaccd1b533 1807516 libs optional libpython3.11_3.11.2-6+deb12u7_s390x.deb
 fb5a1036387bff4487620baa9e91cc3d 36388668 debug optional python3.11-dbg_3.11.2-6+deb12u7_s390x.deb
 463bf5af961881ee7e2341d6dfe32989 613072 python optional python3.11-dev_3.11.2-6+deb12u7_s390x.deb
 bfe1a6e45c0404414c2ee7784a053292 1296 python optional python3.11-full_3.11.2-6+deb12u7_s390x.deb
 8844cdca008beeae329b577869fb5e4d 1829964 python optional python3.11-minimal_3.11.2-6+deb12u7_s390x.deb
 59078df4c4cd5c67930d1e98a1864fd1 1822996 python optional python3.11-nopie_3.11.2-6+deb12u7_s390x.deb
 59301d064c76a62021acc42352155910 5892 python optional python3.11-venv_3.11.2-6+deb12u7_s390x.deb
 16a1a4ba7d08aca0b739add10949d4ed 13424 python optional python3.11_3.11.2-6+deb12u7_s390x-buildd.buildinfo
 bb4ecf4209cdb958f4b6084802bd4dbb 573816 python optional python3.11_3.11.2-6+deb12u7_s390x.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEENly2ANlpa4eeqnluvVOPI7pYNpgFAmn2ndsACgkQvVOPI7pY
NpgeHhAAoytGD+/ApizNHhR2oORcV11MPkrfkJfK6yn/yZ1pXMkZJk2yRozER62K
BWAVeTR2ELeZYMt4nlkrXCnTfNy0+38ASTSCOe8F2yqw4/uSENME0dWP9V+q4HUK
FKTq4LoKv4HwkRn1elkHss+mIBku1t59XWyeKtZDlD/YoUZLX4F42gx3U3xsCN3d
BiGIMnfPbYR3WBz/j5l+9yOHTSpj6KcqRiB+bpmKmiViI8qQnp8KtkYY8dgWw0fL
4bmEqVZkPhQOdRM3lNTPmQBsegJkfkA2LiPa3ULUTLNvBOY9Sl/a0c0gkWlHRHcq
M4MvlvND/OexQMAsv57SXi5m4K/6TnzYnAb6hDZHoBlWEuneYpCYKOwe8yeu/+18
oPIAvw6hT5NkRb2ly0aNB6Ibpoz+ZBA0ihz7n8ZCalqTNnuPJ5k7PWPnjMzp5AKE
SUpKpFAHklqqZejoLP2K1NLA/AuCKA6y5KtK7JWSHlap9LBArQTvP/I1CIspKYY0
9TDCAeNOdKlC+q99Sgt3SG7bVgN/mRynZMKPkjkysl1EpjMzPvmCPGE/mEK4GJTT
qn15rE22X4q2eENuyNrYj7wKlhfgkJkpkLkOQWhLRGfQzfZvbS/TzD46UPy051+X
+bWrx8X3Vo8ScdArA+21JIRs2bUCIXvVglIzTbhNHftV/a7jDNE=
=Qk5o
-----END PGP SIGNATURE-----