- Add CVE-2024-6232-cookies-quad-complex.patch to avoid quadratic

complexity in parsing "-quoted cookie values with backslashes (bsc#1229596, CVE-2024-6232). OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python39?expand=0&rev=199
2024-09-05 13:45:40 +00:00
parent 52ba2746e2
commit 1955425d20
3 changed files with 136 additions and 0 deletions
--- a/python39.changes
+++ b/python39.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Thu Sep  5 13:44:48 UTC 2024 - Matej Cepl <mcepl@cepl.eu>
+
+- Add CVE-2024-6232-cookies-quad-complex.patch to avoid quadratic
+  complexity in parsing "-quoted cookie values with backslashes
+  (bsc#1229596, CVE-2024-6232).
+
 -------------------------------------------------------------------
 Thu Sep  5 08:11:45 UTC 2024 - Matej Cepl <mcepl@cepl.eu>