Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple

quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). Readjusted patches: - CVE-2023-52425-libexpat-2.6.0-backport.patch - fix_configure_rst.patch - sphinx-72.patch
2025-11-15 19:23:28 +01:00
parent f468709d9f
commit fcca9be604
6 changed files with 936 additions and 409 deletions
--- a/fix_configure_rst.patch
+++ b/fix_configure_rst.patch
@@ -3,9 +3,11 @@
 Misc/NEWS               |    2 +-
 2 files changed, 1 insertion(+), 4 deletions(-)

--- a/Doc/using/configure.rst
-+++ b/Doc/using/configure.rst
-@@ -42,7 +42,6 @@ General Options
+Index: Python-3.10.19/Doc/using/configure.rst
+===================================================================
+--- Python-3.10.19.orig/Doc/using/configure.rst	2025-11-15 19:20:16.374640453 +0100
+++ Python-3.10.19/Doc/using/configure.rst	2025-11-15 19:20:26.859963799 +0100
+@@ -42,7 +42,6 @@
 
    See :data:`sys.int_info.bits_per_digit <sys.int_info>`.
 
@@ -13,7 +15,7 @@
 .. cmdoption:: --with-cxx-main=COMPILER
 
    Compile the Python ``main()`` function and link Python executable with C++
-@@ -473,13 +472,11 @@ macOS Options
+@@ -473,13 +472,11 @@
 
 See ``Mac/README.rst``.
 
@@ -27,9 +29,11 @@
 .. cmdoption:: --enable-framework=INSTALLDIR
 
    Create a Python.framework rather than a traditional Unix install. Optional
--- a/Misc/NEWS
-+++ b/Misc/NEWS
-@@ -3942,7 +3942,7 @@ C API
+Index: Python-3.10.19/Misc/NEWS
+===================================================================
+--- Python-3.10.19.orig/Misc/NEWS	2025-11-15 19:20:16.374640453 +0100
+++ Python-3.10.19/Misc/NEWS	2025-11-15 19:20:26.864630298 +0100
+@@ -4018,7 +4018,7 @@
 -----
 
 - bpo-43795: The list in :ref:`stable-abi-list` now shows the public name