- (bsc#1214691, CVE-2022-48566) Add

CVE-2022-48566-compare_digest-more-constant.patch to make compare_digest more constant-time. OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=385
2023-09-16 16:30:00 +00:00
parent fe93386c91
commit 10bb24e527
7 changed files with 68 additions and 0 deletions
--- a/python.spec
+++ b/python.spec
@@ -157,6 +157,9 @@ Patch76:        PygmentsBridge-trime_doctest_flags.patch
 Patch78:        CVE-2022-48565-plistlib-XML-vulns.patch
 # PATCH-FIX-UPSTREAM CVE-2023-40217-avoid-ssl-pre-close.patch gh#python/cpython#108315
 Patch79:        CVE-2023-40217-avoid-ssl-pre-close.patch
+# PATCH-FIX-UPSTREAM CVE-2022-48566-compare_digest-more-constant.patch bsc#1214691 mcepl@suse.com
+# Make compare_digest more constant-time
+Patch80:        CVE-2022-48566-compare_digest-more-constant.patch
 # COMMON-PATCH-END
 BuildRequires:  automake
 BuildRequires:  db-devel
@@ -367,6 +370,7 @@ that rely on earlier non-verification behavior.
 # %%patch77 -p1
 %patch78 -p1
 %patch79 -p1
+%patch80 -p1

 # For patch 66
 cp -v %{SOURCE66} Lib/test/recursion.tar