python-interpreters/python313
SHA256
6
0
Fork 0
forked from pool/python313
Code Pull Requests Activity

- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now

Browse Source 
validates archives to ensure member offsets are non-negative
  (gh#python/cpython#130577, CVE-2025-8194, bsc#1247249).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python313?expand=0&rev=113
This commit is contained in:
Matej Cepl
2025-08-01 20:14:12 +00:00
committed by Git OBS Bridge
parent 8fc89fce82
commit 0c1f23a3d6
3 changed files with 222 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
python313.changes
View File

@@ -1,3 +1,10 @@
-------------------------------------------------------------------
Fri Aug 1 20:09:24 UTC 2025 - Matej Cepl <mcepl@cepl.eu>
- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now
validates archives to ensure member offsets are non-negative
(gh#python/cpython#130577, CVE-2025-8194, bsc#1247249).
-------------------------------------------------------------------
Thu Jul 10 09:33:26 UTC 2025 - Daniel Garcia <daniel.garcia@suse.com>