python3: fix CVE-2025-6075 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Praveen Kumar <praveen.kumar@windriver.com>	2025-11-21 16:56:42 +0530
committer	Steve Sakoman <steve@sakoman.com>	2025-12-01 06:50:49 -0800
commit	c6234dce6342e9ba582f643e53ac348b5cdb0dab (patch)
tree	7e4e64665bc0a9cb58a6b2dfd1d22dce32760de8 /meta/recipes-devtools/python/python3/makerace.patch
parent	6639c7b29502bed5ce1bfb0abcfd4dc09b3e1da6 (diff)
download	poky-c6234dce6342e9ba582f643e53ac348b5cdb0dab.tar.gz

python3: fix CVE-2025-6075

If the value passed to os.path.expandvars() is user-controlled a performance degradation is possible when expanding environment variables. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-6075 Upstream-patch: https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca (From OE-Core rev: 9a7f33d85355ffbe382aa175c04c64541e77b441) Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'meta/recipes-devtools/python/python3/makerace.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: