From eceb720075bdd6aa5922dcbb35355d3e38f4e920ea6199611de19f7de190cb39 Mon Sep 17 00:00:00 2001
From: Matej Cepl <mcepl@suse.com>
Date: Fri, 22 Mar 2024 21:22:48 +0000
Subject: [PATCH 1/2] - Because of bsc#1189495 we have to revert use of
 %autopatch.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python311?expand=0&rev=116
---
 python311.changes |  5 +++++
 python311.spec    | 20 +++++++++++++++++---
 2 files changed, 22 insertions(+), 3 deletions(-)

diff --git a/python311.changes b/python311.changes
index 252896b..7a649e7 100644
--- a/python311.changes
+++ b/python311.changes
@@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Fri Mar 22 21:22:27 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
+
+- Because of bsc#1189495 we have to revert use of %autopatch.
+
 -------------------------------------------------------------------
 Tue Mar 12 08:44:47 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
 
diff --git a/python311.spec b/python311.spec
index f2e69d3..ac653f7 100644
--- a/python311.spec
+++ b/python311.spec
@@ -415,13 +415,27 @@ This package contains libpython3.2 shared library for embedding in
 other applications.
 
 %prep
-%autosetup -p1 -N -n %{tarname}
-%autopatch -p1 -M 08
+%setup -q -n %{tarname}
+%patch -p1 -P 02
+%patch -p1 -P 03
+%patch -p1 -P 04
+%patch -p1 -P 05
+%patch -p1 -P 06
+%patch -p1 -P 07
+%patch -p1 -P 08
 
 %if 0%{?suse_version} <= 1500
 %patch -P 09 -p1
 %endif
-%autopatch -p1 -m 10
+
+%patch -p1 -P 10
+%patch -p1 -P 11
+%patch -p1 -P 12
+%patch -p1 -P 13
+%patch -p1 -P 14
+%patch -p1 -P 15
+%patch -p1 -P 16
+%patch -p1 -P 17
 
 # drop Autoconf version requirement
 sed -i 's/^AC_PREREQ/dnl AC_PREREQ/' configure.ac

From 246a8799b3c8832aad95ffe0d64481e868bf3b6f0ead2d1806d5da97f1f34ec2 Mon Sep 17 00:00:00 2001
From: Matej Cepl <mcepl@suse.com>
Date: Sun, 24 Mar 2024 07:52:22 +0000
Subject: [PATCH 2/2] - Add reference to CVE-2024-0450 (bsc#1221854) to
 changelog.       other entry or central directory (bsc#1221854,
 CVE-2024-0450).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python311?expand=0&rev=117
---
 python311.changes | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/python311.changes b/python311.changes
index 7a649e7..25fb86c 100644
--- a/python311.changes
+++ b/python311.changes
@@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Sun Mar 24 07:51:45 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
+
+- Add reference to CVE-2024-0450 (bsc#1221854) to changelog.
+
 -------------------------------------------------------------------
 Fri Mar 22 21:22:27 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
 
@@ -202,7 +207,7 @@ Thu Feb  8 07:27:40 UTC 2024 - Daniel Garcia <daniel.garcia@suse.com>
       tkinter._test().
     - gh-109858: Protect zipfile from “quoted-overlap” zipbomb. It now
       raises BadZipFile when try to read an entry that overlaps with
-      other entry or central directory.
+      other entry or central directory (bsc#1221854, CVE-2024-0450).
     - gh-38807: Fix race condition in trace. Instead of checking if a
       directory exists and creating it, directly call os.makedirs()
       with the kwarg exist_ok=True.