python313/F00251-change-user-install-location.patch at factory/devel

python-interpreters/python313

SHA256

Fork 0

forked from pool/python313

Files

Matěj Cepl 02c7c3ac57

Add CVE-2025-8291-consistency-zip64.patch

Checks consistency of the zip64 end of central directory record,
and preventing obfuscation of the payload, i.e., you scanning for
malicious content in a ZIP file with one ZIP parser (let's say a
Rust one) then unpack it in production with another (e.g., the
Python one) and get malicious content that the other parser did
not see (CVE-2025-8291, bsc#1251305)

Readjust patches while synchronizing between openSUSE and SLE trees:
  - F00251-change-user-install-location.patch
  - doc-py38-to-py36.patch
  - gh126985-mv-pyvenv.cfg2getpath.patch

2025-11-20 23:05:53 +01:00

7.6 KiB

Raw Permalink Blame History

View Raw

7.6 KiB Raw Permalink Blame History

7.6 KiB

Raw Permalink Blame History