- Add CVE-2025-8194-tarfile-no-neg-offsets.patch which now

validates archives to ensure member offsets are non-negative (gh#python/cpython#130577, CVE-2025-8194, bsc#1247249). OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python39?expand=0&rev=240
2025-08-01 20:25:20 +00:00
commit a74f2b808f
59 changed files with 13035 additions and 0 deletions
--- a/skip-test_pyobject_freed_is_freed.patch
+++ b/skip-test_pyobject_freed_is_freed.patch
@@ -0,0 +1,14 @@
+---
+ Lib/test/test_capi.py |    1 +
+ 1 file changed, 1 insertion(+)
+
+--- a/Lib/test/test_capi.py
+++ b/Lib/test/test_capi.py
+@@ -794,6 +794,7 @@ class PyMemDebugTests(unittest.TestCase)
+     def test_pyobject_forbidden_bytes_is_freed(self):
+         self.check_pyobject_is_freed('check_pyobject_forbidden_bytes_is_freed')
+ 
+    @unittest.skip('Failing on Leap 15.*')
+     def test_pyobject_freed_is_freed(self):
+         self.check_pyobject_is_freed('check_pyobject_freed_is_freed')
+