Path: csiph.com!v102.xanadu-bbs.net!xanadu-bbs.net!feeder.erje.net!eu.feeder.erje.net!news.stack.nl!newsfeed.xs4all.nl!newsfeed2.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail
Return-Path: <benjamin@python.org>
X-Original-To: python-list@python.org
Delivered-To: python-list@mail.python.org
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=python.org; s=200901; t=1401663725; bh=sgE7zMAamdSf7sCdFGQadnlsxDt+cKLd4FGCI4gMXoQ=; h=From:To:Subject:Date:From; b=Do92YphhSpLgEObQ63yxB3f4bmKCDv9KkoxIeLPhLFyGmFOeLu66aFPY/473Fvd45 /j9qXRlXEvcen1U8YGaQ+D7LCkcDnWxjINYN84AoUnNJrUCQk1kAiBMCa7icCVFywn HQHV1fawEMhsgS6d6Y2vBOWcaiPitnBD0iEOf3ow=
X-Sasl-Enc: eCrFcON/O/fB4mpUX9t1AS6PGaXPQKCjWWd7iVxdj19D 1401663723
From: Benjamin Peterson <benjamin@python.org>
To: "python-announce@python.org" <python-announce@python.org>, python-dev@python.org, "python-list@python.org" <python-list@python.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain
X-Mailer: MessagingEngine.com Webmail Interface - ajax-98ff4a7c
Subject: [RELEASE] Python 2.7.7
Date: Sun, 01 Jun 2014 16:02:03 -0700
X-BeenThere: python-list@python.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe: <https://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive: <http://mail.python.org/pipermail/python-list/>
List-Post: <mailto:python-list@python.org>
List-Help: <mailto:python-list-request@python.org?subject=help>
List-Subscribe: <https://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups: comp.lang.python
Message-ID: <mailman.10532.1401663726.18130.python-list@python.org>
Lines: 33
NNTP-Posting-Host: 2001:888:2000:d::a6
X-Trace: 1401663726 news.xs4all.nl 2889 [2001:888:2000:d::a6]:55383
X-Complaints-To: abuse@xs4all.nl
Xref: csiph.com comp.lang.python:72387

I'm happy to announce the immediate availability of Python 2.7.7. Python
2.7.7 is a regularly scheduled bugfix release for the Python 2.7 series.
This release includes months of accumulated bugfixes. All the changes in
Python 2.7.7 are described in detail in the Misc/NEWS file of the source
tarball. You can view it online at

    http://hg.python.org/cpython/raw-file/f89216059edf/Misc/NEWS

The 2.7.7 release also contains fixes for two severe, if arcane,
potential security vulnerabilities. The first was the possibility of
reading arbitrary process memory using JSONDecoder.raw_decode. [1] (No
other json APIs are affected.) The second security issue is an integer
overflow in the strop module. [2] (You actually have no reason
whatsoever to use the strop module.) Another security note for 2.7.7 is
that the release includes a backport from Python 3 of
hmac.compare_digest. This begins the implementation of PEP 466, Network
Security Enhancements for Python 2.7.x.

Downloads are at

    https://python.org/download/releases/2.7.7/

This is a production release. As always, please report bugs to

    http://bugs.python.org/

Build great things,
Benjamin Peterson
2.7 Release Manager
(on behalf of all of Python's contributors)

[1] http://bugs.python.org/issue21529
[2] http://bugs.python.org/issue21530