Sync from SUSE:ALP:Source:Standard:1.0 python311 revision bd02c02df23ed668068d7b37e8bbf27b

2024-11-11 14:43:46 +01:00
parent 6c3c394b74
commit 8472e59a77
5 changed files with 508 additions and 18 deletions
--- a/python311.spec
+++ b/python311.spec
@@ -185,6 +185,15 @@ Patch20:        CVE-2024-0397-memrace_ssl.SSLContext_cert_store.patch
 # PATCH-FIX-UPSTREAM CVE-2024-6923-email-hdr-inject.patch bsc#1228780 mcepl@suse.com
 # prevent email header injection, patch from gh#python/cpython!122608
 Patch21:        CVE-2024-6923-email-hdr-inject.patch
+# PATCH-FIX-UPSTREAM CVE-2024-8088-zipfile-Path-sanitization.patch bsc#1229704 mcepl@suse.com
+# sanitizing names in zipfile.Path 
+Patch22:        CVE-2024-8088-zipfile-Path-sanitization.patch
+# PATCH-FIX-UPSTREAM CVE-2024-6232-ReDOS-backtrack-tarfile.patch bsc#1230227 mcepl@suse.com
+# removing backtracking when parsing tarfile headers
+Patch23:        CVE-2024-6232-ReDOS-backtrack-tarfile.patch
+# PATCH-FIX-UPSTREAM CVE-2024-7592-quad-complex-cookies.patch bsc#1229596 mcepl@suse.com
+# fixing quadratic complexity in parsing "-quoted cookie values with backslashes 
+Patch24:        CVE-2024-7592-quad-complex-cookies.patch
 BuildRequires:  autoconf-archive
 BuildRequires:  automake
 BuildRequires:  fdupes
@@ -427,29 +436,13 @@ other applications.

 %prep
 %setup -q -n %{tarname}
-%patch -p1 -P 02
-%patch -p1 -P 03
-%patch -p1 -P 04
-%patch -p1 -P 05
-%patch -p1 -P 06
-%patch -p1 -P 07
-%patch -p1 -P 08
+%autopatch -p1 -M 08

 %if 0%{?suse_version} <= 1500
 %patch -P 09 -p1
 %endif

-%patch -p1 -P 10
-%patch -p1 -P 11
-%patch -p1 -P 13
-%patch -p1 -P 14
-%patch -p1 -P 15
-%patch -p1 -P 16
-%patch -p1 -P 17
-%patch -p1 -P 18
-%patch -p1 -P 19
-%patch -p1 -P 20
-%patch -p1 -P 21
+%autopatch -p1 -m 10

 # drop Autoconf version requirement
 sed -i 's/^AC_PREREQ/dnl AC_PREREQ/' configure.ac