- add patch adapted from upstream (patch 208) to add support for building
against system expat; add --with-system-expat to "configure" invocation; remove
embedded copy of expat 1.95.7 from the source tree during "prep"
- ensure pyexpat.so gets built by explicitly listing all C modules in the
payload in %files, rather than using dynfiles
Related: CVE-2009-3720
- fixes for other security bugs (patches 44, 45, 46, 47, 48)
Resolves: CVE-2010-3493
Resolves: CVE-2011-1015
Resolves: CVE-2011-1521
Resolves: CVE-2010-1634
Resolves: CVE-2010-2089

- rgbimg module integer overflows (CVE-2010-1450)
Resolves: rhbz#650936

- Fix all of the low priority security bugs:
- Resolves: rhbz#486329
- Multiple integer overflows in python core (CVE-2008-2315)
- Resolves: 455008 
- PyString_FromStringAndSize does not check for negative size values (CVE-2008-1887)
- Resolves: 443810
- Multiple integer overflows discovered by Google (CVE-2008-3143)
- Resolves: 455013 
- Multiple buffer overflows in unicode processing (CVE-2008-3142)
- Resolves: 454990
- Potential integer underflow and overflow in the PyOS_vsnprintf C API function (CVE-2008-3144)
- Resolves: 455018
- imageop module multiple integer overflows (CVE-2008-4864)
- Resolves: 469656
- stringobject, unicodeobject integer overflows (CVE-2008-5031)
- Resolves: 470915
- integer signedness error in the zlib extension module (CVE-2008-1721)
- Resolves: 442005
- imageop module integer overflows (CVE-2008-1679)
- CVE-2008-1679 patch is part of python-2.3.4-CVE-2008-4864-imageop-{1,2}.patch
- Resolves: 441306