Security fix for CVE-2024-4032 (rhbz#2293394)
This commit is contained in:
Lumir Balhar
parent
4a51f6d585
commit
be26dc77a7
2 changed files with 368 additions and 1 deletions
|
|
@ -17,7 +17,7 @@ URL: https://www.python.org/
|
|||
#global prerel ...
|
||||
%global upstream_version %{general_version}%{?prerel}
|
||||
Version: %{general_version}%{?prerel:~%{prerel}}
|
||||
Release: 28%{?dist}
|
||||
Release: 29%{?dist}
|
||||
# Python is Python
|
||||
# pip MIT is and bundles:
|
||||
# appdirs: MIT
|
||||
|
|
@ -698,6 +698,14 @@ Patch426: 00426-cve-2023-6597.patch
|
|||
# https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba
|
||||
Patch427: 00427-zipextfile-tell-and-seek-cve-2024-0450.patch
|
||||
|
||||
# 00431 # ee1b513c52ab7663f7d58b07a1df123ea551e7c4
|
||||
# CVE-2024-4032: incorrect IPv4 and IPv6 private ranges
|
||||
#
|
||||
# Upstream issue: https://github.com/python/cpython/issues/113171
|
||||
#
|
||||
# Backported from 3.8.
|
||||
Patch431: 00431-cve-2024-4032.patch
|
||||
|
||||
# (New patches go here ^^^)
|
||||
#
|
||||
# When adding new patches to "python" and "python3" in Fedora, EL, etc.,
|
||||
|
|
@ -1961,6 +1969,9 @@ CheckPython optimized
|
|||
# ======================================================
|
||||
|
||||
%changelog
|
||||
* Tue Jul 02 2024 Lumír Balhar <lbalhar@redhat.com> - 3.6.15-29
|
||||
- Security fix for CVE-2024-4032 (rhbz#2293394)
|
||||
|
||||
* Wed Apr 24 2024 Lumír Balhar <lbalhar@redhat.com> - 3.6.15-28
|
||||
- Security fix for CVE-2024-0450 and CVE-2023-6597
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue