forked from pool/python315
Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple
quadratic complexity vulnerabilities of os.path.expandvars()
(CVE-2025-6075, bsc#1252974).
Skip test_curses on ppc64le (gh#python/cpython#141534)
avoid simple quadratic complexity vulnerabilities of
(CVE-2025-6075, bsc#1252974). os.path.expandvars() the
--verbose option anymore. Patch by Victor Stinner.
- gh-95953: A CSS class, diff_changed, was added to th e
Patch by Katie Gardner .
- gh-138804: Raise TypeError instead of AttributeError whe n
an argument of incorrect type is passed to shlex.quote() .
This restores the behavior of the function prior to 3.14 .
- gh-138514: Raise ValueError when a multi-character strin g
is passed to the echo_char parameter of getpass.getpass() .
Patch by Benjamin Johnson .
- gh-116946: The _random.Random C type is now immutable .
Patch by Bénédikt Tran .
- gh-136028: Fix parsing month names containing “İ” (U+0130 ,
LATIN CAPITAL LETTER I WITH DOT ABOVE) in time.strptime() .
This affects locales az_AZ, ber_DZ, ber_MA and crh_UA .
whether the sign bit of a floating-point value is set .
Patch by Bénédikt Tran .
- gh-125996: Fix thread safety of collections.OrderedDict .
Patch by Kumar Aditya .
- gh-133551: Support t-strings (PEP 750) in annotationlib .
Patch by Jelle Zijlstra .
- gh-87790: Support underscore and comma as thousand s
Patch by Sergey B Kirpichev .
macro is responsible for raising a curses.error exceptio n.
Patch by Bénédikt Tra n.
- gh-138378: Move the globals-to-const JIT optimizer pass
into to the main JIT optimizer pass
- gh-138372: Fix SyntaxWarning emitted for erroneou s
subscript expressions involving template string literals .
Patch by Brian Schubert .
- gh-138004: On Solaris/Illumos platforms, thread names e
ar now encoded as ASCII to avoid errors on systems (e.g .
OpenIndiana) that don’t support non-ASCII names .
Patch by Pablo Galindo .
- gh-137728: Fix the JIT’s handling of many local variables .
This previously caused a segfault .
- gh-137576: Fix for incorrect source code being shown i n
Patch by Adam Hartz .
PyBytesWriter_Create PyBytesWriter_Discard ()
PyBytesWriter_FinishWithPointer ()
PyBytesWriter_FinishWithSize ()
PyBytesWriter_Finish PyBytesWriter_Format ()
PyBytesWriter_GetData PyBytesWriter_GetSize ()
PyBytesWriter_GrowAndUpdatePointer PyBytesWriter_Grow ()
PyBytesWriter_Resize PyBytesWriter_WriteBytes ()
- gh-133644: Remove deprecated alia s
PyImport_ImportModuleNoBlock() of PyImport_ImportModule() .
Patch by Bénédikt Tran .
This commit is contained in:
@@ -224,6 +224,9 @@ Patch40: fix-test-recursion-limit-15.6.patch
|
||||
Patch41: bsc1243155-sphinx-non-determinism.patch
|
||||
# PATCH-FIX-OPENSUSE gh139257-Support-docutils-0.22.patch gh#python/cpython#139257 daniel.garcia@suse.com
|
||||
Patch42: gh139257-Support-docutils-0.22.patch
|
||||
# PATCH-FIX-UPSTREAM CVE-2025-6075-expandvars-perf-degrad.patch bsc#1252974 mcepl@suse.com
|
||||
# Avoid potential quadratic complexity vulnerabilities in path modules
|
||||
Patch43: CVE-2025-6075-expandvars-perf-degrad.patch
|
||||
#### Python 3.15 DEVELOPMENT PATCHES
|
||||
BuildRequires: autoconf-archive
|
||||
BuildRequires: automake
|
||||
@@ -661,8 +664,10 @@ EXCLUDE="$EXCLUDE test_pydoc"
|
||||
EXCLUDE="$EXCLUDE test_multiprocessing_forkserver"
|
||||
%endif
|
||||
%ifarch ppc ppc64 ppc64le
|
||||
# exclue test_faulthandler due to bnc#831629
|
||||
# exclude test_faulthandler due to bnc#831629
|
||||
EXCLUDE="$EXCLUDE test_faulthandler"
|
||||
# exclude test_curse for gh#python/cpython#141534
|
||||
EXCLUDE="$EXCLUDE test_curses"
|
||||
%endif
|
||||
# some tests break in QEMU
|
||||
%if 0%{?qemu_user_space_build}
|
||||
|
||||
Reference in New Issue
Block a user