python3-aiohttp: patch CVE-2025-69228

Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69228 Backport the patch that is referenced by the NVD advisory. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
author: Gyorgy Sarvari <skandigraun@gmail.com> 2026-02-04 17:29:20 +0100
committer: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-02-05 06:59:41 +0530
commit: 6ac033a2272e70bfb6b017b7ee61bd0c9ffc5039 (patch)
tree: cc10eea65e13e285507610f8bb8f20a01cebed1e /meta-python
parent: 0ea6c04dde4902016de86120de99c16ea7d91df6 (diff)
download: meta-openembedded-6ac033a2272e70bfb6b017b7ee61bd0c9ffc5039.tar.gz
2 files changed, 48 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-aiohttp/CVE-2025-69228.patch b/meta-python/recipes-devtools/python/python3-aiohttp/CVE-2025-69228.patch
new file mode 100644
index 0000000000..74e383ea1b
--- /dev/null
+++ b/meta-python/recipes-devtools/python/python3-aiohttp/CVE-2025-69228.patch
@@ -0,0 +1,47 @@
+From 8426e0e6df8a3481c7482d4fbce749bfe77e2e44 Mon Sep 17 00:00:00 2001
+From: Gyorgy Sarvari <skandigraun@gmail.com>
+Date: Sat, 3 Jan 2026 02:48:45 +0000
+Subject: [PATCH] Enforce client_max_size over entire multipart form (#11889)
+ (#11908)
+From: Sam Bull <git@sambull.org>
+(cherry picked from commit ed90718fab5d34c127a283e10385f19440df7dd0)
+CVE: CVE-2025-69228
+Upstream-Status: Backport [https://github.com/aio-libs/aiohttp/commit/b7dbd35375aedbcd712cbae8ad513d56d11cce60]
+Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
+---
+ aiohttp/web_request.py       | 2 +-
+ tests/test_web_functional.py | 4 ++--
+ 2 files changed, 3 insertions(+), 3 deletions(-)
+diff --git a/aiohttp/web_request.py b/aiohttp/web_request.py
+index 96222b0..b5fa40c 100644
+--- a/aiohttp/web_request.py
+++ b/aiohttp/web_request.py
+@@ -721,8 +721,8 @@ class BaseRequest(MutableMapping[str, Any], HeadersMixin):
+             multipart = await self.multipart()
+             max_size = self._client_max_size
+ 
+            size = 0
+             while (field := await multipart.next()) is not None:
+-                size = 0
+                 field_ct = field.headers.get(hdrs.CONTENT_TYPE)
+ 
+                 if isinstance(field, BodyPartReader):
+diff --git a/tests/test_web_functional.py b/tests/test_web_functional.py
+index c33b3ce..8ec237b 100644
+--- a/tests/test_web_functional.py
+++ b/tests/test_web_functional.py
+@@ -1705,8 +1705,8 @@ async def test_app_max_client_size(aiohttp_client) -> None:
+     await resp.release()
+ 
+ 
+-async def test_app_max_client_size_adjusted(aiohttp_client) -> None:
+-    async def handler(request):
+async def test_app_max_client_size_adjusted(aiohttp_client: AiohttpClient) -> None:
+    async def handler(request: web.Request) -> web.Response:
+         await request.post()
+         return web.Response(body=b"ok")
+ 
diff --git a/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb b/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb
index 644c07153d..55ff57d05c 100644
--- a/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb
+++ b/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb
@@ -8,6 +8,7 @@ SRC_URI += "file://CVE-2025-69224.patch \
            file://CVE-2025-69225.patch \
            file://CVE-2025-69226.patch \
            file://CVE-2025-69227.patch \
+            file://CVE-2025-69228.patch \
 "
 SRC_URI[sha256sum] = "4fc61385e9c98d72fcdf47e6dd81833f47b2f77c114c29cd64a361be57a763a2"
author	Gyorgy Sarvari <skandigraun@gmail.com>	2026-02-04 17:29:20 +0100
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:41 +0530
commit	6ac033a2272e70bfb6b017b7ee61bd0c9ffc5039 (patch)
tree	cc10eea65e13e285507610f8bb8f20a01cebed1e /meta-python
parent	0ea6c04dde4902016de86120de99c16ea7d91df6 (diff)
download	meta-openembedded-6ac033a2272e70bfb6b017b7ee61bd0c9ffc5039.tar.gz

diff --git a/meta-python/recipes-devtools/python/python3-aiohttp/CVE-2025-69228.patch b/meta-python/recipes-devtools/python/python3-aiohttp/CVE-2025-69228.patch new file mode 100644 index 0000000000..74e383ea1b --- /dev/null +++ b/meta-python/recipes-devtools/python/python3-aiohttp/CVE-2025-69228.patch
@@ -0,0 +1,47 @@
		1	From 8426e0e6df8a3481c7482d4fbce749bfe77e2e44 Mon Sep 17 00:00:00 2001
		2	From: Gyorgy Sarvari <skandigraun@gmail.com>
		3	Date: Sat, 3 Jan 2026 02:48:45 +0000
		4	Subject: [PATCH] Enforce client_max_size over entire multipart form (#11889)
		5	(#11908)
		6
		7	From: Sam Bull <git@sambull.org>
		8
		9	(cherry picked from commit ed90718fab5d34c127a283e10385f19440df7dd0)
		10
		11	CVE: CVE-2025-69228
		12	Upstream-Status: Backport [https://github.com/aio-libs/aiohttp/commit/b7dbd35375aedbcd712cbae8ad513d56d11cce60]
		13	Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
		14	---
		15	aiohttp/web_request.py \| 2 +-
		16	tests/test_web_functional.py \| 4 ++--
		17	2 files changed, 3 insertions(+), 3 deletions(-)
		18
		19	diff --git a/aiohttp/web_request.py b/aiohttp/web_request.py
		20	index 96222b0..b5fa40c 100644
		21	--- a/aiohttp/web_request.py
		22	+++ b/aiohttp/web_request.py
		23	@@ -721,8 +721,8 @@ class BaseRequest(MutableMapping[str, Any], HeadersMixin):
		24	multipart = await self.multipart()
		25	max_size = self._client_max_size
		26
		27	+ size = 0
		28	while (field := await multipart.next()) is not None:
		29	- size = 0
		30	field_ct = field.headers.get(hdrs.CONTENT_TYPE)
		31
		32	if isinstance(field, BodyPartReader):
		33	diff --git a/tests/test_web_functional.py b/tests/test_web_functional.py
		34	index c33b3ce..8ec237b 100644
		35	--- a/tests/test_web_functional.py
		36	+++ b/tests/test_web_functional.py
		37	@@ -1705,8 +1705,8 @@ async def test_app_max_client_size(aiohttp_client) -> None:
		38	await resp.release()
		39
		40
		41	-async def test_app_max_client_size_adjusted(aiohttp_client) -> None:
		42	- async def handler(request):
		43	+async def test_app_max_client_size_adjusted(aiohttp_client: AiohttpClient) -> None:
		44	+ async def handler(request: web.Request) -> web.Response:
		45	await request.post()
		46	return web.Response(body=b"ok")
		47


diff --git a/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb b/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb index 644c07153d..55ff57d05c 100644 --- a/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb +++ b/meta-python/recipes-devtools/python/python3-aiohttp_3.12.15.bb
@@ -8,6 +8,7 @@ SRC_URI += "file://CVE-2025-69224.patch \
8	file://CVE-2025-69225.patch \	8	file://CVE-2025-69225.patch \
9	file://CVE-2025-69226.patch \	9	file://CVE-2025-69226.patch \
10	file://CVE-2025-69227.patch \	10	file://CVE-2025-69227.patch \
		11	file://CVE-2025-69228.patch \
11	"	12	"
12	SRC_URI[sha256sum] = "4fc61385e9c98d72fcdf47e6dd81833f47b2f77c114c29cd64a361be57a763a2"	13	SRC_URI[sha256sum] = "4fc61385e9c98d72fcdf47e6dd81833f47b2f77c114c29cd64a361be57a763a2"
13		14