From a6fa7f608e4ec3883a29560f9ddc80612a69a79429ae0dfdeaabfedf1d95acd6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Mat=C4=9Bj=20Cepl?= <mcepl@cepl.eu>
Date: Tue, 11 Nov 2025 21:26:09 +0100
Subject: [PATCH] Mark the upgrade to 3.12.12 as fixing CVE-2025-8291,
 bsc#1251305.

---
 python312.changes | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/python312.changes b/python312.changes
index 0db2121..f5a287f 100644
--- a/python312.changes
+++ b/python312.changes
@@ -10,7 +10,8 @@ Wed Oct 15 09:10:21 UTC 2025 - Daniel Garcia <daniel.garcia@suse.com>
   - Security
     - gh-139700: Check consistency of the zip64 end of central
       directory record. Support records with “zip64 extensible data”
-      if there are no bytes prepended to the ZIP file.
+      if there are no bytes prepended to the ZIP file
+      (CVE-2025-8291, bsc#1251305).
     - gh-139400: xml.parsers.expat: Make sure that parent Expat
       parsers are only garbage-collected once they are no longer
       referenced by subparsers created by