[Python-Dev] Released fixes for CVE-2008-2315 for Python 2.4?

Barry Warsaw barry at python.org
Sat Nov 8 13:44:16 CET 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Nov 8, 2008, at 7:24 AM, Martin v. Löwis wrote:

>> Skip Montanaro and others hackers started to port the  
>> multiprocessing module
>> to Python 2.4 and 2.5.
>>   http://code.google.com/p/python-multiprocessing/
>>
>> Is it planned to include it in 2.4.6 and/or 2.5.3?
>
> Neither. For 2.4.x, we only accept security fixes; for 2.5.3, only bug
> fixes (and after that, only security fixes). New features are  
> rejected.

I completely agree.  If only there was an independent repository of  
add-on packages for Python available... <wink>.

- -Barry

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)

iQCVAwUBSRWJoHEjvBPtnXfVAQIa7wP9FF0+VbZcZWX33RPh8CTVsP/DjVhIvkLr
qLIBwyqByyVhx3kNSxHqzPmtSclOjjtfps04rcD7kPi3f9EaOb7vlvlPtiNjU95n
ti3nBszrJKLeDzBz3CagpCLVBZbXDGWAD8k3dtMGHuwR6TJZNbrHkQ1PvAaBL/wJ
Krw0ph/Qs/8=
=Fxa0
-----END PGP SIGNATURE-----


More information about the Python-Dev mailing list