python311

python-interpreters/python311

SHA256

Fork 0

forked from pool/python311

Commit Graph

Author	SHA256	Message	Date
Matěj Cepl	48953809e4	Add CVE-2025-6075-expandvars-perf-degrad.patch Avoid simple quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). Readjusted patches: - CVE-2023-52425-libexpat-2.6.0-backport.patch - CVE-2023-52425-remove-reparse_deferral-tests.patch - fix_configure_rst.patch - skip_if_buildbot-extend.patch	2025-11-20 23:16:35 +01:00
Matej Cepl	77ce54fe8f	- Update CVE-2023-52425-libexpat-2.6.0-backport.patch so that it uses features sniffing, not just comparing version number. Include also support-expat-CVE-2022-25236-patched.patch. - Add CVE-2023-52425-remove-reparse_deferral-tests.patch skipping failing tests. OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python311?expand=0&rev=124	2024-05-01 23:30:08 +00:00

Author

SHA256

Message

Date

Matěj Cepl

48953809e4

Add CVE-2025-6075-expandvars-perf-degrad.patch

Avoid simple quadratic complexity vulnerabilities of os.path.expandvars()
  (CVE-2025-6075, bsc#1252974).
Readjusted patches:
  - CVE-2023-52425-libexpat-2.6.0-backport.patch
  - CVE-2023-52425-remove-reparse_deferral-tests.patch
  - fix_configure_rst.patch
  - skip_if_buildbot-extend.patch

2025-11-20 23:16:35 +01:00

Matej Cepl

77ce54fe8f

- Update CVE-2023-52425-libexpat-2.6.0-backport.patch

so that it uses features sniffing, not just
  comparing version number. Include also
  support-expat-CVE-2022-25236-patched.patch.
- Add CVE-2023-52425-remove-reparse_deferral-tests.patch skipping
  failing tests.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python311?expand=0&rev=124

2024-05-01 23:30:08 +00:00

2 Commits