Update python39 to version 3.9.19 / rev 56 via SR 1161042

https://build.opensuse.org/request/show/1161042
by user mcepl + anag+factory
- Add old-libexpat.patch making the test suite work with
  libexpat < 2.6.0 (gh#python/cpython#117187).
- Update to 3.9.19:
  - Security
    - gh-115398: Allow controlling Expat >=2.6.0 reparse deferral
      (CVE-2023-52425, bsc#1219559) by adding five new methods:
        xml.etree.ElementTree.XMLParser.flush()
        xml.etree.ElementTree.XMLPullParser.flush()
        xml.parsers.expat.xmlparser.GetReparseDeferralEnabled()
        xml.parsers.expat.xmlparser.SetReparseDeferralEnabled()
        xml.sax.expatreader.ExpatParser.flush()
    - gh-115399: Update bundled libexpat to 2.6.0
    - gh-113659: Skip .pth files with names starting with a dot
      or hidden file attribute.
  - Core and Builtins
    - gh-102388: Fix a bug where iso2022_jp_3 and iso2022_jp_2004
      codecs read out of

packages/p/python39/.rev

@@ -1024,4 +1024,64 @@
     <comment>Automatic submission by obs-autosubmit</comment>
     <requestid>1157648</requestid>
   </revision>
+  <revision rev="56" vrev="1">
+    <srcmd5>8819880258c03e8766833c037179190a</srcmd5>
+    <version>3.9.19</version>
+    <time>1711477480</time>
+    <user>anag+factory</user>
+    <comment>- Add old-libexpat.patch making the test suite work with
+  libexpat &lt; 2.6.0 (gh#python/cpython#117187).
+- Update to 3.9.19:
+  - Security
+    - gh-115398: Allow controlling Expat &gt;=2.6.0 reparse deferral
+      (CVE-2023-52425, bsc#1219559) by adding five new methods:
+        xml.etree.ElementTree.XMLParser.flush()
+        xml.etree.ElementTree.XMLPullParser.flush()
+        xml.parsers.expat.xmlparser.GetReparseDeferralEnabled()
+        xml.parsers.expat.xmlparser.SetReparseDeferralEnabled()
+        xml.sax.expatreader.ExpatParser.flush()
+    - gh-115399: Update bundled libexpat to 2.6.0
+    - gh-113659: Skip .pth files with names starting with a dot
+      or hidden file attribute.
+  - Core and Builtins
+    - gh-102388: Fix a bug where iso2022_jp_3 and iso2022_jp_2004
+      codecs read out of bounds
+  - Library
+    - gh-115197: urllib.request no longer resolves the hostname
+      before checking it against the system’s proxy bypass list
+      on macOS and Windows.
+    - gh-115133: Fix tests for XMLPullParser with Expat 2.6.0.
+    - gh-81194: Fix a crash in socket.if_indextoname() with
+      specific value (UINT_MAX). Fix an integer overflow in
+      socket.if_indextoname() on 64-bit non-Windows platforms.
+    - gh-109858: Protect zipfile from “quoted-overlap”
+      zipbomb. It now raises BadZipFile when try to read an
+      entry that overlaps with other entry or central directory
+      (CVE-2024-0450, bsc#1221854).
+    - gh-107077: Seems that in some conditions, OpenSSL will
+      return SSL_ERROR_SYSCALL instead of SSL_ERROR_SSL
+      when a certification verification has failed, but
+      the error parameters will still contain ERR_LIB_SSL
+      and SSL_R_CERTIFICATE_VERIFY_FAILED. We are now
+      detecting this situation and raising the appropiate
+      ssl.SSLCertVerificationError. Patch by Pablo Galindo
+    - gh-91133: Fix a bug in tempfile.TemporaryDirectory cleanup,
+      which now no longer dereferences symlinks when working
+      around file system permission errors (CVE-2023-6597,
+      bsc#1219666).
+  - Documentation
+    - gh-115399: Document CVE-2023-52425 of Expat &lt;2.6.0 under
+      “XML vulnerabilities”.
+  - Tools/Demos
+    - gh-109991: Update GitHub CI workflows to use OpenSSL 3.0.11
+      and multissltests to use 1.1.1w and 3.0.11.
+- Remove upstreamed patches:
+  - CVE-2023-6597-TempDir-cleaning-symlink.patch
+  - libexpat260.patch
+- Refreshed patches:
+  - F00251-change-user-install-location.patch
+  - python-3.3.0b1-localpath.patch
+</comment>
+    <requestid>1161042</requestid>
+  </revision>
 </revisionlist>

packages/p/python39/F00251-change-user-install-location.patch

@@ -9,8 +9,8 @@ is not detected to make pip and distutils install into separate location.
 
 Fedora Change: https://fedoraproject.org/wiki/Changes/Making_sudo_pip_safe
 ---
- Lib/distutils/command/install.py | 15 +++++++++++++--
- Lib/site.py                      |  9 ++++++++-
+ Lib/distutils/command/install.py |   15 +++++++++++++--
+ Lib/site.py                      |    9 ++++++++-
  2 files changed, 21 insertions(+), 3 deletions(-)
 
 --- a/Lib/distutils/command/install.py
@@ -39,7 +39,7 @@ Fedora Change: https://fedoraproject.org/wiki/Changes/Making_sudo_pip_safe
                  if self.exec_prefix is None:
 --- a/Lib/site.py
 +++ b/Lib/site.py
-@@ -353,7 +353,14 @@ def getsitepackages(prefixes=None):
+@@ -362,7 +362,14 @@ def getsitepackages(prefixes=None):
      return sitepackages
 
  def addsitepackages(known_paths, prefixes=None):

packages/p/python39/Python-3.9.19.tar.xz

@@ -0,0 +1 @@
+/ipfs/bafybeib5zdhewyy2jyrskifhq45pbv5zldajmwppbc2izqt6zjw4ewl5nm

packages/p/python39/Python-3.9.19.tar.xz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQIzBAABCgAdFiEE4/8oOcBIslwITevpsmmV4xAlBWgFAmX5uMIACgkQsmmV4xAl
+BWj1tQ//T2qX0m08xWGV7az0D1sH3qjoY+4fEYrknw5uAHqZFiQecRsF27jxv6iH
+gP/6GAUw+lbH+9UofhCc0NbPOklliS7gFLNqJdKYFB6JXRNxiRYKh3uVx5o2n0ES
+kR3kRl77S47rtCbSMrKTh6ZoWowyIUZGFsIonk5KsLv+oELXY1AK/Im9i3/iTJ1Z
+jd/e2oHWuseIxbGZAO8AEP8zOsMMIHfsL3ry8H9xhhPyQM6t5DldqLH3UVE6kq95
+fs+olGO4FEKif3VDuLaHVlgtGZOUr6aDIYUmWxctPicboSb6RJAq37CCYgWykOyB
+WQec0ONbU7lxt5jhemLSDRy0mEio7+nXIKsO9rDN0Wk1QMpHUl77/C5qVlzfHal7
+NhPt8Yl0hBnOjzTq+di+xhAKJcdKp+zZH7/ugAbthuqhNfnkqiF68PANHrCm3gbY
+myN0eSaQ9yIa/MbHW8Am9NL/nuFbxdJUL/OIKQ9kFHgD7Qid86TZF0G2vbiBH/eF
+IVYoMxRZLd7eu5dIcwXSef+Ai97pODbx9y7bOCFyBO9FuFrlhPObgc7KXCeAzP+y
+k5eWvZtWTvvQ+2si2iT22EPBO0D0pnhYWZKpGK5EuKuw8nasNS1yLbhDTVpARynd
+8buQh3t2wPfILlQr0+JzDY8GSdQ/nIHGgx2IERdSX/v+9Yo2AvU=
+=gYAl
+-----END PGP SIGNATURE-----