- Add reference to CVE-2024-0450 (bsc#1221854) to changelog.

other entry or central directory (bsc#1221854, CVE-2024-0450). OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python311?expand=0&rev=117
2024-03-24 07:52:22 +00:00 · 2024-03-24 07:52:22 +00:00 · 246a8799b3
commit 246a8799b3
parent eceb720075
1 changed files with 6 additions and 1 deletions
--- a/python311.changes
+++ b/python311.changes
@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Sun Mar 24 07:51:45 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
+
+- Add reference to CVE-2024-0450 (bsc#1221854) to changelog.
+
 -------------------------------------------------------------------
 Fri Mar 22 21:22:27 UTC 2024 - Matej Cepl <mcepl@cepl.eu>

@ -202,7 +207,7 @@ Thu Feb  8 07:27:40 UTC 2024 - Daniel Garcia <daniel.garcia@suse.com>
      tkinter._test().
    - gh-109858: Protect zipfile from “quoted-overlap” zipbomb. It now
      raises BadZipFile when try to read an entry that overlaps with
-      other entry or central directory.
+      other entry or central directory (bsc#1221854, CVE-2024-0450).
    - gh-38807: Fix race condition in trace. Instead of checking if a
      directory exists and creating it, directly call os.makedirs()
      with the kwarg exist_ok=True.