requests (2.31.0+dfsg-1ubuntu1.1) noble-security; urgency=medium
* SECURITY UPDATE: Information Leak
- debian/patches/CVE-2024-47081.patch: Only use hostname to do netrc
lookup instead of netloc
- CVE-2024-47081
* Skip Test
- skip-failing-zip-test.patch: Skip failing zip test
-- Bruce Cable <bruce.cable@canonical.com> Thu, 12 Jun 2025 11:19:32 +1000
requests (2.31.0+dfsg-1ubuntu1) mantic; urgency=medium
* Merge with Debian unstable (LP: #2018104). Remaining changes:
- d/p/remove-charset-normalizer-dependency.patch: Remove charset-normalizer
as a dependency of requests (LP #1975541)
* Dropped changes:
- d/p/CVE-2023-32681.patch: Unintended leak of Proxy-Authorization header
[Fixed upstream in 2.31.0]
- d/p/0002-Fix-tests-with-HTTP-proxy.patch: Fix autopkgtest when
http_proxy, https_proxy or no_proxy variable is set (LP #1974182)
[Fixed in 2.31.0+dfsg-1]
-- Lena Voytek <lena.voytek@canonical.com> Tue, 25 Jul 2023 14:54:56 -0700
requests (2.31.0+dfsg-1) unstable; urgency=medium
[ Max-Julian Pogner ]
* Update upstream homepage, as the previous url would direct browsers
to a non-existant webserver.
[ Daniele Tricoli ]
* New upstream version 2.31.0+dfsg
- Fix CVE-2023-32681 (Closes: #1036693).
* Refresh 0001-Remove-remote-images-traking-code-and-ads.patch.
* Add a patch by Olivier Gayot (thanks Oliver!) to fix autopkgtest when
http_proxy, https_proxy or no_proxy is set. (Closes: #1011276).
* debian/control
- Bump standards version to 4.6.2, no changes needed.
* Skip tests: test_header_with_subclass_types and
test_urllib3_pool_connection_closed due connection error.
* debian/copyright
- Update copyright years.
-- Daniele Tricoli <eriol@debian.org> Mon, 17 Jul 2023 18:31:20 +0200
requests (2.28.1+dfsg-1ubuntu2) mantic; urgency=medium
* SECURITY UPDATE: Unintended leak of Proxy-Authorization header
- debian/patches/CVE-2023-32681.patch: don't attach header to redirects
with an HTTPS destination in requests/sessions.py,
tests/test_requests.py.
- CVE-2023-32681
-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 05 Jun 2023 12:54:33 -0400
requests (2.28.1+dfsg-1ubuntu1) lunar; urgency=medium
* Merge with Debian unstable (LP: #1993439). Remaining changes:
- Fix autopkgtest when http_proxy, https_proxy or no_proxy variable is set
(LP #1974182)
- d/p/remove-charset-normalizer-dependency.patch: Remove charset-normalizer
as a dependency of requests (LP #1975541)
-- Lena Voytek <lena.voytek@canonical.com> Mon, 28 Nov 2022 15:18:43 -0700
requests (2.28.1+dfsg-1) unstable; urgency=medium
[ Lena Voytek ]
* New upstream version 2.28.1+dfsg
* debian/patches/0001-Remove-remote-images-traking-code-and-ads.patch
- Refresh.
* debian/rules: Disable test_json_decode_persists_doc_attr
[ Daniele Tricoli ]
* debian/control
- Bump standards version to 4.6.1, no changes needed.
-- Daniele Tricoli <eriol@debian.org> Thu, 24 Nov 2022 00:23:09 +0100
requests (2.27.1+dfsg-1ubuntu2) kinetic; urgency=medium
* d/p/remove-charset-normalizer-dependency.patch: Remove charset-normalizer
as a dependency of requests (LP: #1975541)
-- Lena Voytek <lena.voytek@canonical.com> Mon, 23 May 2022 15:06:07 -0700
requests (2.27.1+dfsg-1ubuntu1) kinetic; urgency=medium
* Fix autopkgtest when http_proxy, https_proxy or no_proxy variable is set
(LP: #1974182)
-- Olivier Gayot <olivier.gayot@canonical.com> Thu, 19 May 2022 14:14:07 +0200
requests (2.27.1+dfsg-1) unstable; urgency=medium
[ root ]
* Update standards version to 4.6.0, no changes needed.
[ Daniele Tricoli ]
* New upstream version 2.27.1+dfsg
* Enable tests both at build time and using autopkgtest.
* Enable salsa pipelines.
* debian/copyright
- Update Files-Excluded rule to remove the logo.
- Update copyright years.
* debian/patches/0001-Remove-remote-images-traking-code-and-ads.patch
- Refresh.
* debian/patches/0002-Temporary-exclude-requests.codes.patch
- Drop since fixed upstream.
* debian/control
- Add python3-pytest, python3-pytest-httpbin, python3-pytest-mock,
python3-socks and python3-trustme to Build-Depends.
- Set python3-requests Multi-Arch: foreign. Thanks Elrond for the report.
(Closes: #985625)
-- Daniele Tricoli <eriol@debian.org> Sun, 20 Mar 2022 17:51:34 +0100
requests (2.25.1+dfsg-2) unstable; urgency=medium
* debian/control
- Drop upper bound version for chardet and urllib3. Thanks to sramacher
and myon for the suggestions. (Closes: #978749)
-- Daniele Tricoli <eriol@debian.org> Thu, 31 Dec 2020 17:55:39 +0100
requests (2.25.1+dfsg-1) unstable; urgency=medium
* New upstream release.
* Refresh patches.
* debian/control
- Bump chardet << 5.
-- Daniele Tricoli <eriol@debian.org> Thu, 31 Dec 2020 03:01:11 +0100
requests (2.25.0+dfsg-2) unstable; urgency=medium
* debian/patches/0002-Temporary-exclude-requests.codes.patch
- Temporary exclude requests.codes to make documentation not fail during
build. (Closes: #978351)
* debian/control
- Bump Standards-Version to 4.5.1 (no changes needed).
-- Daniele Tricoli <eriol@debian.org> Wed, 30 Dec 2020 01:23:56 +0100
requests (2.25.0+dfsg-1) unstable; urgency=medium
[ Debian Janitor ]
* Set upstream metadata fields: Security-Contact.
[ Daniele Tricoli ]
* New upstream version 2.25.0+dfsg
* debian/patches/0001-Remove-remote-images-traking-code-and-ads.patch
- Refresh.
* debian/copyright
- Drop section for konami.js since it's no more distributed by upstream.
* debian/control
- Bump python3-urllib3 to << 1.27.
-- Daniele Tricoli <eriol@debian.org> Tue, 08 Dec 2020 22:46:34 +0100
requests (2.24.0+dfsg-1) unstable; urgency=medium
* Team upload.
[ Ondřej Nový ]
* d/control: Update Maintainer field with new Debian Python Team
contact address.
* d/control: Update Vcs-* fields with new Debian Python Team Salsa
layout.
[ Drew Parsons ]
* New upstream release.
* debhelper compatibility level 13
-- Drew Parsons <dparsons@debian.org> Fri, 23 Oct 2020 19:56:50 +0800
requests (2.23.0+dfsg-2) unstable; urgency=medium
* Drop python2 support; Closes: #938355
* debian/control
- suggest -doc in python3-requests, as suggested by Scott Kitterman
-- Sandro Tosi <morph@debian.org> Wed, 01 Apr 2020 09:56:33 -0400
requests (2.23.0+dfsg-1) unstable; urgency=medium
[ Fabrice BAUZAC ]
* d/watch: track the github tarballs (which include the documentation)
instead of the PyPI ones (which do not).
[ Debian Janitor ]
* Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
Repository-Browse.
[ Daniele Tricoli ]
* New upstream version 2.23.0+dfsg.
* Repackage to exclude non-free images and logos via Files-Excluded in
debian/copyright.
* Build doc package. (Closes: #877027)
* debian/control
- Bump Standards-Version to 4.5.0 (no changes needed).
- Add python-requests-doc stanza.
- Add python3-sphinx and python3-pygments to B-D.
* debian/copyright
- Update copyright years.
- Add sections for files inside docs not released with Apache License.
* debian/patches/0001-Remove-remote-images-traking-code-and-ads.patch
- Remove remote images, traking code and ads.
* debian/python-requests-doc.doc-base
- Register documentation using doc-base.
* debian/rules
- Build documentation using sphinx.
* debian/watch
- Add repacksuffix and dversionmangle options.
-- Daniele Tricoli <eriol@debian.org> Tue, 31 Mar 2020 01:04:35 +0200
requests (2.22.0-2) unstable; urgency=medium
* Upload to unstable. (Closes: #945978)
-- Daniele Tricoli <eriol@debian.org> Thu, 05 Dec 2019 03:09:13 +0100
requests (2.22.0-1) experimental; urgency=medium
[ Ondřej Nový ]
* Use debhelper-compat instead of debian/compat.
* Bump Standards-Version to 4.4.1.
[ Daniele Tricoli ]
* New upstream version 2.22.0.
* debian/control
- Bump python{,3}-urllib3 Builds-Depends and Depends to << 1.26.
- Bump debhelper compat level to 12.
-- Daniele Tricoli <eriol@debian.org> Tue, 03 Dec 2019 01:06:18 +0100
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog python3-requests`.
Generated by dwww version 1.16 on Mon Dec 15 20:51:31 CET 2025.