]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6587dc1) | patch
python3: upgrade 3.13.3 -> 3.13.4
authorPeter Marko <peter.marko@siemens.com>
Sun, 8 Jun 2025 21:54:36 +0000 (23:54 +0200)
committerSteve Sakoman <steve@sakoman.com>
Mon, 9 Jun 2025 14:55:16 +0000 (07:55 -0700)
commit55a9cd748531c75d46f5d6d53af692a38c6b6716
tree7dea1bb5fa46d39c953696999184a267eea5805btree
parent6587dc1fc62de79c4599761af59ebd385244cb57commit | diff
python3: upgrade 3.13.3 -> 3.13.4

Refresh patches.

* https://www.python.org/downloads/release/python-3134/
  Security content in this release
  * gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330]
    [CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed
    tarfile extraction filters (filter="data" and filter="tar") to be
    bypassed using crafted symlinks and hard links.
  * gh-133767: Fix use-after-free in the “unicode-escape” decoder with a
    non-“strict” error handler.
  * gh-128840: Short-circuit the processing of long IPv6 addresses early
    in ipaddress to prevent excessive memory consumption and a minor
    denial-of-service.

gh-133767 got meawhile CVE-2025-4516 assigned.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-devtools/python/python3/0001-Avoid-shebang-overflow-on-python-config.py.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/0001-Lib-sysconfig.py-use-prefix-value-from-build-configu.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/0001-Skip-failing-tests-due-to-load-variability-on-YP-AB.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/0001-skip-no_stdout_fileno-test-due-to-load-variability.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/0001-test_active_children-skip-problematic-test.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/0001-test_readline-skip-limited-history-test.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/0001-test_storlines-skip-due-to-load-variability.patch diff | blob | blame | history
meta/recipes-devtools/python/python3/makerace.patch diff | blob | blame | history
meta/recipes-devtools/python/python3_3.13.4.bb [moved from meta/recipes-devtools/python/python3_3.13.3.bb with 99% similarity] diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib