From b79d100c8f166f6e01b3f412c5f5f634ba385d82 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= Date: Tue, 27 Aug 2024 17:46:19 +0200 Subject: [PATCH] Adding patchinfo patchinfo.20240816152059851650.269002615871826 --- .../_patchinfo | 82 +++++++++++++++++++ 1 file changed, 82 insertions(+) create mode 100644 patchinfo.20240816152059851650.269002615871826/_patchinfo diff --git a/patchinfo.20240816152059851650.269002615871826/_patchinfo b/patchinfo.20240816152059851650.269002615871826/_patchinfo new file mode 100644 index 0000000..e27ed77 --- /dev/null +++ b/patchinfo.20240816152059851650.269002615871826/_patchinfo @@ -0,0 +1,82 @@ + + + python3-base test test_faulthandler fails on ppc64 + VUL-1: CVE-2019-20907: python,python36,python3,python27: in Lib/tarfile.py an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation + %autopatch missing -m and -M parameter + VUL-0: CVE-2024-0450: python: The zipfile module is vulnerable to "quoted-overlap" + VUL-0: CVE-2024-0397: python,python3,python310,python311,python312,python36,python39: memory race condition in ssl.SSLContext certificate store methods + VUL-0: CVE-2024-4032: python,python3,python310,python311,python312,python36,python39: incorrect IPv4 and IPv6 private ranges + /usr/bin/idle* don't have executable bits + VUL-0: CVE-2024-6923: python,python3,python310,python311,python312,python36,python39: CPython : Email header injection due to unquoted newlines + + + + + + + + + + + + mcepl + important + security + Security update for python311, python-rpm-macros + This update for python311, python-rpm-macros fixes the following issues: + +python311: + - CVE-2024-0450: Fixed zipfile module vulnerability with "quoted-overlap" zipbomb (bsc#1221854) + - CVE-2024-4032: Fixed incorrect IPv4 and IPv6 private ranges (bsc#1226448) + - CVE-2024-0397: Fixed memory race condition in ssl.SSLContext certificate store methods (bsc#1226447) + - CVE-2024-6923: Prevent email header injection due to unquoted newlines (bsc#1228780) + - Fixed executable bits for /usr/bin/idle* (bsc#1227378). + + +python-rpm-macros: + + - Update to version 20240618.c146b29: + * Add %FLAVOR_pytest and %FLAVOR_pyunittest variants + + - Update to version 20240618.1e386da: + * Fix python_clone sed regex + + - Update to version 20240614.02920b8: + * Make sure that RPM_BUILD_ROOT env is set + * don't eliminate any cmdline arguments in the shebang line + * Create python313 macros + + - Update to version 20240415.c664b45: + * Fix typo 310 -> 312 in default-prjconf + + - Update to version 20240202.501440e: + * SPEC0: Drop python39, add python312 to buildset (#169) + + - Update to version 20231220.98427f3: + * fix python2_compile macro + + - Update to version 20231207.46c2ec3: + * make FLAVOR_compile compatible with python2 + + - Update to version 20231204.dd64e74: + * Combine fix_shebang in one line + * New macro FLAVOR_fix_shebang_path + * Use realpath in %python_clone macro shebang replacement + * Compile and fix_shebang in %python_install macros + + - Update to version 20231010.0a1f0d9: + * Revert "Compile and fix_shebang in %python_install macros" + * gh#openSUSE/python-rpm-macros#163 + + - Update to version 20231010.a32e110: + * Compile and fix_shebang in %python_install macros + + - Update to version 20231005.bf2d3ab: + * Fix shebang also in sbin with macro _fix_shebang + + python-rpm-macros + python311 + python311:base + python311:doc + +