Adding patchinfo patchinfo.20240927074108533490.269002615871826

2024-11-11 14:50:22 +01:00 · 2024-11-11 14:50:22 +01:00 · a0793139ed
commit a0793139ed
parent e5eba6e7f7
2 changed files with 24 additions and 1 deletions
--- a/2
+++ b/2
@ -1 +1 @@
-Subproject commit 8b40a08f485cda6f96051841bcc3f67cec9cdbfc
+Subproject commit 0b3614eddc84201fb2669abd3a4981d6451689a1
--- a/patchinfo.20240927074108533490.269002615871826/_patchinfo
+++ b/patchinfo.20240927074108533490.269002615871826/_patchinfo
@ -0,0 +1,23 @@
+<patchinfo>
+  <!-- generated from request(s) 345595 -->
+  <issue tracker="bnc" id="1229596">VUL-0: CVE-2024-7592: python, cpython: Uncontrolled CPU resource consumption when in http.cookies module</issue>
+  <issue tracker="bnc" id="1229704">VUL-0: CVE-2024-8088: python310,python311,python312,python39: denial of service in zipfile</issue>
+  <issue tracker="bnc" id="1230227">VUL-0: CVE-2024-6232: python,python-base,python3,python3-base,python310,python311,python312,python36,python39: python: cpython: tarfile: ReDos via excessive backtracking while parsing header values</issue>
+  <issue tracker="cve" id="2024-6232"/>
+  <issue tracker="cve" id="2024-7592"/>
+  <issue tracker="cve" id="2024-8088"/>
+  <packager>mcepl</packager>
+  <rating>important</rating>
+  <category>security</category>
+  <summary>Security update for python311</summary>
+  <description>This update for python311 fixes the following issues:
+
+- CVE-2024-8088: Fixed a denial of service in zipfile (bsc#1229704)
+- CVE-2024-6232: Fixed a ReDos via excessive backtracking while parsing header values (bsc#1230227)
+- CVE-2024-7592: Fixed a denial of service in the http.cookies module (bsc#1229596)
+</description>
+  <package>python311</package>
+  <package>python311:base</package>
+  <package>python311:doc</package>
+  <seperate_build_arch/>
+</patchinfo>