Context Navigation

← Previous Ticket
Next Ticket →

#5931 new enhancement

python3-3.14.5

Reported by:	Bruce Dubbs	Owned by:	SecurityAdvisory
Priority:	high	Milestone:	13.1
Component:	Book	Version:	git
Severity:	normal	Keywords:
Cc:

Description

New point version.

Change History (4)

comment:1 by Douglas R. Reno, 2 days ago

A quick heads up here that the garbage collector behavior has been reverted:

Garbage collector

Notably, the garbage collector (GC) has changed in Python 3.14.5.

The incremental garbage collector shipped in Python 3.14.0-3.14.4 has been reverted back 
to the generational garbage collector from 3.13, due to a number of reports of 
significant memory pressure in production environments. See What's New and 
discuss.python.org for details.

comment:2 by Bruce Dubbs, 27 hours ago

Resolution:	→ fixed
Status:	new → closed

Fixed at commit 6d990d4871.

comment:3 by Douglas R. Reno, 26 hours ago

Priority:	normal → high
Resolution:	fixed
Status:	closed → reopened

While reviewing the release notes for this update, I found:

gh-149148: ensurepip: Upgrade bundled pip to 26.1. This version fixes the CVE 2026-3219 vulnerability. Patch by Victor Stinner.

This is separate from what we can normally patch, so let's mark it as a security update. CVE details are at https://nvd.nist.gov/vuln/detail/CVE-2026-3219 (Medium)

comment:4 by Douglas R. Reno, 26 hours ago

Owner:	changed from lfs-book to SecurityAdvisory
Status:	reopened → new

Note: See TracTickets for help on using tickets.

Download in other formats: