python-interpreters/python314
SHA256
7
0
Fork 0
forked from pool/python314
Code Pull Requests Activity

- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now

Browse Source 
validates archives to ensure member offsets are non-negative
  (gh#python/cpython#130577, CVE-2025-8194, bsc#1247249).

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python314?expand=0&rev=89
This commit is contained in:
Matej Cepl
2025-08-01 20:11:08 +00:00
committed by Matěj Cepl
parent e49112fb09
commit 0073182b67
3 changed files with 225 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
python314.changes
View File

@@ -1,3 +1,10 @@
-------------------------------------------------------------------
Fri Aug 1 20:09:24 UTC 2025 - Matej Cepl <mcepl@cepl.eu>
- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now
validates archives to ensure member offsets are non-negative
(gh#python/cpython#130577, CVE-2025-8194, bsc#1247249).
-------------------------------------------------------------------
Wed Jul 23 08:05:20 UTC 2025 - Matej Cepl <mcepl@cepl.eu>