Path: csiph.com!usenet.pasdenom.info!aioe.org!news.stack.nl!newsfeed.xs4all.nl!newsfeed4a.news.xs4all.nl!xs4all!post.news.xs4all.nl!not-for-mail
Return-Path: <benjamin@python.org>
X-Original-To: python-list@python.org
Delivered-To: python-list@mail.python.org
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=python.org; s=200901; t=1400460560; bh=+46uzkRV4ADrh2fPxAYka5SJvt+Vlg1uYCfeFA15DTo=; h=From:To:Subject:Date:From; b=Ro0G3Wtk1oSmZaO00bO+qVP0kPjSE24Kmk/ksT9Lo50OGcCz8bIGcSZ8yleGPI09H BVEM9qrCXflnabjORnTv1UuWAO+bkKexxcWFpHLldmYEnVP8G4sxlwy6poRPpU8xAG PbUW+Knfz6dvgyV9buadr5CZhPY1Sop7w9SEEecI=
X-Sasl-Enc: BwFahqEgjceQyXP/LhRlhYcmeXZZ0KjvzYMWhMczZukf 1400460558
From: Benjamin Peterson <benjamin@python.org>
To: python-announce-list@python.org, python-list@python.org, python-dev@python.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain
X-Mailer: MessagingEngine.com Webmail Interface - ajax-988d4021
Subject: [RELEASED] Python 2.7.7 release candidate 1
Date: Sun, 18 May 2014 17:49:18 -0700
X-BeenThere: python-list@python.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe: <https://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive: <http://mail.python.org/pipermail/python-list/>
List-Post: <mailto:python-list@python.org>
List-Help: <mailto:python-list-request@python.org?subject=help>
List-Subscribe: <https://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups: comp.lang.python
Message-ID: <mailman.10116.1400460561.18130.python-list@python.org>
Lines: 32
NNTP-Posting-Host: 2001:888:2000:d::a6
X-Trace: 1400460561 news.xs4all.nl 2941 [2001:888:2000:d::a6]:35306
X-Complaints-To: abuse@xs4all.nl
Xref: csiph.com comp.lang.python:71738

Greetings Python users,
Python 2.7.7 release candidate 1 is now available for download. Python
2.7.7 is a regularly scheduled bugfix release for the Python 2.7 series.
The 2.7.7 release contains fixes for two severe, if arcane, potential
security vulnerabilities. The first was the possibility of reading
arbitrary process memory using JSONDecoder.raw_decode. [1] (No other
json APIs are affected.) The second security issue is an integer
overflow in the strop module. [2] (If you don't know what the strop
module is, go ahead and forget it now.) This release also includes
months of accumulated normal bugfixes. All the changes in Python 2.7.7
are described in detail in the Misc/NEWS file of the source tarball. You
can view it online at

    http://hg.python.org/cpython/raw-file/e32e3a9f3902/Misc/NEWS

Downloads are at

    https://python.org/download/releases/2.7.7/

This is a testing release. Assuming no horrible bugs are found, 2.7.7
final will be released in two weeks time. Please consider testing your
applications and libraries with the release candidate and reporting bugs
to

    http://bugs.python.org/

Enjoy,
Benjamin Peterson
2.7 Release Manager

[1] http://bugs.python.org/issue21529
[2] http://bugs.python.org/issue21530