- handle NULL bytes in certain fields of SSL certificates

(CVE-2013-4073, bnc#834601) OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=148
2013-08-16 11:26:52 +00:00
parent 5b1624f712
commit 3b23ea3881
5 changed files with 262 additions and 3 deletions
--- a/python.spec
+++ b/python.spec
@@ -56,6 +56,7 @@ Patch20:        python-bundle-lang.patch
 Patch22:        python-2.7.4-aarch64.patch
 Patch23:        python-2.7.4-no-REUSEPORT.patch
 Patch24:        python-bsddb6.diff
+Patch25:        CVE-2013-4073_py27.patch
 # COMMON-PATCH-END
 BuildRequires:  automake
 BuildRequires:  db-devel
@@ -178,7 +179,8 @@ implementation of the standard Unix DBM databases.
 %patch20 -p1
 %patch22 -p1
 %patch23 -p1
-%patch -P 24 -p1
+%patch24 -p1
+%patch25 -p1

 # drop Autoconf version requirement
 sed -i 's/^version_required/dnl version_required/' configure.ac