SHA256
1
0

- Add reference to CVE-2024-0450 (bsc#1221854) to changelog.

other entry or central directory (bsc#1221854, CVE-2024-0450).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python311?expand=0&rev=117
This commit is contained in:
Matej Cepl 2024-03-24 07:52:22 +00:00 committed by Git OBS Bridge
parent eceb720075
commit 246a8799b3

View File

@ -1,3 +1,8 @@
-------------------------------------------------------------------
Sun Mar 24 07:51:45 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
- Add reference to CVE-2024-0450 (bsc#1221854) to changelog.
-------------------------------------------------------------------
Fri Mar 22 21:22:27 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
@ -202,7 +207,7 @@ Thu Feb 8 07:27:40 UTC 2024 - Daniel Garcia <daniel.garcia@suse.com>
tkinter._test().
- gh-109858: Protect zipfile from “quoted-overlap” zipbomb. It now
raises BadZipFile when try to read an entry that overlaps with
other entry or central directory.
other entry or central directory (bsc#1221854, CVE-2024-0450).
- gh-38807: Fix race condition in trace. Instead of checking if a
directory exists and creating it, directly call os.makedirs()
with the kwarg exist_ok=True.