]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 47128e6) | patch
[3.10] gh-145506: Fixes CVE-2026-2297 by ensuring SourcelessFileLoader uses io.open_c...
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Thu, 30 Apr 2026 21:18:39 +0000 (23:18 +0200)
committerGitHub <noreply@github.com>
Thu, 30 Apr 2026 21:18:39 +0000 (22:18 +0100)
commit876858c9f65d9ab656c7fa639f268ce7856d89dd
treee0eac0caf183ecbe8c7d406bb18e8f1d40600c41tree | snapshot
parent47128e64f98c3a20271138a98c2922bea2a3ee0ecommit | diff
[3.10] gh-145506: Fixes CVE-2026-2297 by ensuring SourcelessFileLoader uses io.open_code (GH-145507) (#145516)

* gh-145506: Fixes CVE-2026-2297 by ensuring SourcelessFileLoader uses io.open_code (GH-145507)
(cherry picked from commit a51b1b512de1d56b3714b65628a2eae2b07e535e)

Co-authored-by: Steve Dower <steve.dower@python.org>
* Regenerate importlib_external.h

* Fix blurb entry

The `:cve:` role is not available on this branch.

---------

Co-authored-by: Steve Dower <steve.dower@python.org>
Co-authored-by: Stan Ulbrych <stan@ulbrych.org>
Co-authored-by: Stan Ulbrych <89152624+StanFromIreland@users.noreply.github.com>
Lib/importlib/_bootstrap_external.py diff | blob | blame | history
Misc/NEWS.d/next/Security/2026-03-04-18-59-17.gh-issue-145506.6hwvEh.rst [new file with mode: 0644] blob
Python/importlib_external.h diff | blob | blame | history
Mirror of https://github.com/python/cpython.git