(CVE-2011-1521 had been fixed in pkgsrc).
What's New in Python 2.6.7?
===========================
*Release date: 2011-06-03*
*NOTE: Python 2.6 is in security-fix-only mode. No non-security bug fixes are
allowed. Python 2.6.7 and beyond will be source only releases.*
* No changes since 2.6.7rc2.
What's New in Python 2.6.7 rc 2?
================================
*Release date: 2011-05-20*
*NOTE: Python 2.6 is in security-fix-only mode. No non-security bug fixes are
allowed. Python 2.6.7 and beyond will be source only releases.*
Library
-------
- Issue #11662: Make urllib and urllib2 ignore redirections if the
scheme is not HTTP, HTTPS or FTP (CVE-2011-1521).
- Issue #11442: Add a charset parameter to the Content-type in SimpleHTTPServer
to avoid XSS attacks.
What's New in Python 2.6.7 rc 1?
================================
*Release date: 2011-05-06*
Library
-------
- Issue #9129: smtpd.py is vulnerable to DoS attacks deriving from missing
error handling when accepting a new connection.
98ff2a47e3