python-interpreters/python312
SHA256
6
0
Fork 0
forked from pool/python312
Code Pull Requests Activity

- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now

Browse Source 
validates archives to ensure member offsets are non-negative
  (gh#python/cpython#130577, CVE-2025-8194, bsc#1247249).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python312?expand=0&rev=155
This commit is contained in:
Matej Cepl
2025-08-01 20:16:22 +00:00
committed by Git OBS Bridge
parent 77f76833e3
commit da0b04baf2
3 changed files with 222 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
python312.changes
View File

@@ -1,3 +1,10 @@
-------------------------------------------------------------------
Fri Aug 1 20:09:24 UTC 2025 - Matej Cepl <mcepl@cepl.eu>
- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now
validates archives to ensure member offsets are non-negative
(gh#python/cpython#130577, CVE-2025-8194, bsc#1247249).
-------------------------------------------------------------------
Wed Jul 2 14:47:20 UTC 2025 - Matej Cepl <mcepl@cepl.eu>