package/python-h11: security bump to version 0.16.0

Fixes the following security issue: - CVE-2025-43859: A leniency in h11's parsing of line terminators in chunked-coding message bodies can lead to request smuggling vulnerabilities under certain conditions. For more information, see: - https://nvd.nist.gov/vuln/detail/CVE-2025-43859 - 114803a29c For more details on the version bump, see: - https://github.com/python-hyper/h11/compare/v0.14.0...v0.16.0 Signed-off-by: Thomas Perale <thomas.perale@mind.be> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 6541717ef9) Signed-off-by: Thomas Perale <thomas.perale@mind.be>
2025-05-16 18:59:11 +02:00
parent a46e7c619c
commit 4c862b9a37
2 changed files with 4 additions and 4 deletions
--- a/package/python-h11/python-h11.hash
+++ b/package/python-h11/python-h11.hash
@@ -1,5 +1,5 @@
 # md5, sha256 from https://pypi.org/pypi/h11/json
-md5  84c33fc0aa1f868928114c4d02c43dc2  h11-0.14.0.tar.gz
-sha256  8f19fbbe99e72420ff35c00b27a34cb9937e902a8b810e2c88300c6f0a3b699d  h11-0.14.0.tar.gz
+md5  af51401a776fd654cfd98a197af9f21f  h11-0.16.0.tar.gz
+sha256  4e35b956cf45792e4caa5885e69fba00bdbc6ffafbfa020300e549b208ee5ff1  h11-0.16.0.tar.gz
 # Locally computed sha256 checksums
 sha256  37db5bb85926db28a427a25867f10b1232003aea1be69ccb851138adb8e6f361  LICENSE.txt
--- a/package/python-h11/python-h11.mk
+++ b/package/python-h11/python-h11.mk
@@ -4,9 +4,9 @@
 #
 ################################################################################

-PYTHON_H11_VERSION = 0.14.0
+PYTHON_H11_VERSION = 0.16.0
 PYTHON_H11_SOURCE = h11-$(PYTHON_H11_VERSION).tar.gz
-PYTHON_H11_SITE = https://files.pythonhosted.org/packages/f5/38/3af3d3633a34a3316095b39c8e8fb4853a28a536e55d347bd8d8e9a14b03
+PYTHON_H11_SITE = https://files.pythonhosted.org/packages/01/ee/02a2c011bdab74c6fb3c75474d40b3052059d95df7e73351460c8588d963
 PYTHON_H11_SETUP_TYPE = setuptools
 PYTHON_H11_LICENSE = MIT
 PYTHON_H11_LICENSE_FILES = LICENSE.txt