python-interpreters/python310
SHA256
7
0
Fork 0
forked from pool/python310
Code Pull Requests Activity

Add CVE-2025-6075-expandvars-perf-degrad.patch

Browse Source 
Avoid simple quadratic complexity vulnerabilities of
os.path.expandvars() (CVE-2025-6075, bsc#1252974).
This commit is contained in:
Matej Cepl
2025-11-22 21:40:20 +01:00
parent b6cf90e447
commit e147c67e7d
3 changed files with 369 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
python310.spec
View File

@@ -204,6 +204,9 @@ Patch27: gh120226-fix-sendfile-test-kernel-610.patch
Patch28: sphinx-802.patch
# PATCH-FIX-OPENSUSE gh139257-Support-docutils-0.22.patch gh#python/cpython#139257 daniel.garcia@suse.com
Patch29: gh139257-Support-docutils-0.22.patch
# PATCH-FIX-UPSTREAM CVE-2025-6075-expandvars-perf-degrad.patch bsc#1252974 mcepl@suse.com
# Avoid potential quadratic complexity vulnerabilities in path modules
Patch30: CVE-2025-6075-expandvars-perf-degrad.patch
BuildRequires: autoconf-archive
BuildRequires: automake
BuildRequires: fdupes