d16c812b7e
Release notes: https://www.python.org/downloads/release/python-3138/ Fixes the following security issues: gh-139400: xml.parsers.expat: Make sure that parent Expat parsers are only garbage-collected once they are no longer referenced by subparsers created by ExternalEntityParserCreate(). Patch by Sebastian Pipping. gh-139283: sqlite3: correctly handle maximum number of rows to fetch in Cursor.fetchmany and reject negative values for Cursor.arraysize. Patch by Bénédikt Tran. gh-135661: Fix CDATA section parsing in html.parser.HTMLParser according to the HTML5 standard https://docs.python.org/release/3.13.8/whatsnew/changelog.html#security Signed-off-by: Bernd Kuhls <bernd@kuhls.net> [Peter: Mark as security bump] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>