diff --git a/python-base.spec b/python-base.spec index d24a53c..a579d5c 100644 --- a/python-base.spec +++ b/python-base.spec @@ -161,10 +161,10 @@ Patch79: CVE-2023-40217-avoid-ssl-pre-close.patch # PATCH-FIX-UPSTREAM CVE-2022-48566-compare_digest-more-constant.patch bsc#1214691 mcepl@suse.com # Make compare_digest more constant-time Patch80: CVE-2022-48566-compare_digest-more-constant.patch -# COMMON-PATCH-END # PATCH-FIX-UPSTREAM CVE-2022-48560-after-free-heappushpop.patch bsc#1214675 mcepl@suse.com # fix use after free in heapq.heappushpop() Patch81: CVE-2022-48560-after-free-heappushpop.patch +# COMMON-PATCH-END %define python_version %(echo %{tarversion} | head -c 3) BuildRequires: automake BuildRequires: fdupes diff --git a/python-doc.spec b/python-doc.spec index a57be64..550f621 100644 --- a/python-doc.spec +++ b/python-doc.spec @@ -160,6 +160,9 @@ Patch79: CVE-2023-40217-avoid-ssl-pre-close.patch # PATCH-FIX-UPSTREAM CVE-2022-48566-compare_digest-more-constant.patch bsc#1214691 mcepl@suse.com # Make compare_digest more constant-time Patch80: CVE-2022-48566-compare_digest-more-constant.patch +# PATCH-FIX-UPSTREAM CVE-2022-48560-after-free-heappushpop.patch bsc#1214675 mcepl@suse.com +# fix use after free in heapq.heappushpop() +Patch81: CVE-2022-48560-after-free-heappushpop.patch # COMMON-PATCH-END Provides: pyth_doc = %{version} Provides: pyth_ps = %{version} diff --git a/python.spec b/python.spec index a7fcd48..6bfa193 100644 --- a/python.spec +++ b/python.spec @@ -160,6 +160,9 @@ Patch79: CVE-2023-40217-avoid-ssl-pre-close.patch # PATCH-FIX-UPSTREAM CVE-2022-48566-compare_digest-more-constant.patch bsc#1214691 mcepl@suse.com # Make compare_digest more constant-time Patch80: CVE-2022-48566-compare_digest-more-constant.patch +# PATCH-FIX-UPSTREAM CVE-2022-48560-after-free-heappushpop.patch bsc#1214675 mcepl@suse.com +# fix use after free in heapq.heappushpop() +Patch81: CVE-2022-48560-after-free-heappushpop.patch # COMMON-PATCH-END BuildRequires: automake BuildRequires: db-devel