python-interpreters/python315
SHA256
6
0
Fork 0
forked from pool/python315
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add CVE-2026-0865-wsgiref-hdrs-EOLs.patch fixing bsc#1257042

Browse Source 
(CVE-2026-0865) rejecting control characters in
  wsgiref.headers.Headers, which could be abused for injecting
  false HTTP headers.
This commit is contained in:
Matej Cepl
2026-02-04 01:58:39 +01:00
parent 63187f7b8b
commit e5855b89e8
3 changed files with 76 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
python315.spec
View File

@@ -241,6 +241,9 @@ Patch46: CVE-2026-0672-http-hdr-inject-cookie-Morsel.patch
# PATCH-FIX-UPSTREAM CVE-2025-12781-b64decode-alt-chars.patch bsc#1257108 mcepl@suse.com
# Fix decoding with non-standard Base64 alphabet gh#python/cpython#125346
Patch47: CVE-2025-12781-b64decode-alt-chars.patch
# PATCH-FIX-UPSTREAM CVE-2026-0865-wsgiref-hdrs-EOLs.patch bsc#1257042 mcepl@suse.com
# Reject control characters in wsgiref.headers.Headers
Patch48: CVE-2026-0865-wsgiref-hdrs-EOLs.patch
#### Python 3.15 DEVELOPMENT PATCHES
BuildRequires: autoconf-archive
BuildRequires: automake