python/python-cbor2
SHA256
15
0
Fork 0
forked from pool/python-cbor2
Code Pull Requests Activity

Add CVE-2025-64076.patch from upstream

Browse Source 
Fix: bug in decode_definite_long_string() that causes incorrect chunk
length calculation.

bsc#1253746, CVE-2025-64076, gh#agronholm/cbor2#265
This commit is contained in:
Daniel Garcia
2025-11-19 12:02:31 +01:00
parent 0c6379bf3c
commit 86be5cbd3a
3 changed files with 81 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python-cbor2.spec
View File

@@ -24,6 +24,8 @@ Summary: Pure Python CBOR (de)serializer with extensive tag support
License: MIT
URL: https://github.com/agronholm/cbor2
Source: https://files.pythonhosted.org/packages/source/c/cbor2/cbor2-%{version}.tar.gz
# PATCH-FIX-UPSTREAM CVE-2025-64076.patch bsc#1253746 gh#agronholm/cbor2#265
Patch0: CVE-2025-64076.patch
BuildRequires: %{python_module devel}
BuildRequires: %{python_module hypothesis}
BuildRequires: %{python_module pip}