Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple

quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974).
2025-11-14 01:47:34 +01:00
parent 02c7c3ac57
commit a8f3f2707f
3 changed files with 383 additions and 0 deletions
--- a/python313.spec
+++ b/python313.spec
@@ -238,6 +238,9 @@ Patch45:        gh139257-Support-docutils-0.22.patch
 # PATCH-FIX-UPSTREAM CVE-2025-8291-consistency-zip64.patch bsc#1251305 mcepl@suse.com
 # Check consistency of the zip64 end of central directory record
 Patch46:        CVE-2025-8291-consistency-zip64.patch
+# PATCH-FIX-UPSTREAM CVE-2025-6075-expandvars-perf-degrad.patch bsc#1252974 mcepl@suse.com
+# Avoid potential quadratic complexity vulnerabilities in path modules
+Patch47:        CVE-2025-6075-expandvars-perf-degrad.patch
 BuildRequires:  autoconf-archive
 BuildRequires:  automake
 BuildRequires:  fdupes