Skip to content

python-3.12: add CVE-2025-0938 fix #41207

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 4, 2025
Merged

python-3.12: add CVE-2025-0938 fix #41207

merged 1 commit into from
Feb 4, 2025

Conversation

@techalchemy
Copy link
Member

@techalchemy techalchemy changed the title add CVE-2025-0938 fix python-3.12: add CVE-2025-0938 fix Feb 3, 2025
@ajayk ajayk requested a review from smoser February 3, 2025 21:18
@techalchemy techalchemy force-pushed the python-312-cve-2025-0938 branch from 8293995 to b050095 Compare February 4, 2025 16:37
@techalchemy techalchemy force-pushed the python-312-cve-2025-0938 branch from b050095 to 4b71483 Compare February 4, 2025 17:27
smoser
smoser approved these changes Feb 4, 2025
View reviewed changes
Copy link
Member

@smoser smoser left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

upstream 3.12 pr is python/cpython#129527
That PR says:

merged commit a7084f6 into python:3.12

The commit referenced is the same as listed here.
So 👍 from me.

@ajayk ajayk added the approved-to-run A repo member has approved this external contribution label Feb 4, 2025
@ajayk ajayk enabled auto-merge (squash) February 4, 2025 19:16
@octo-sts octo-sts bot added the bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. label Feb 4, 2025
@ajayk ajayk merged commit 4f66aa9 into wolfi-dev:main Feb 4, 2025
11 checks passed
techalchemy added a commit to techalchemy/advisories that referenced this pull request Feb 4, 2025
@techalchemy
Adding fixed event for python-3.12
80d0645 
- fix for CVE-2025-0938 landed in wolfi-dev/os#41207

Signed-off-by: Dan Ryan <[email protected]>
@techalchemy techalchemy mentioned this pull request Feb 4, 2025
Closed
techalchemy added a commit to techalchemy/advisories that referenced this pull request Feb 4, 2025
@techalchemy
Adding fixed event for python-3.12
f55413a 
- fix for CVE-2025-0938 landed in wolfi-dev/os#41207

Signed-off-by: Dan Ryan <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@smoser smoser smoser approved these changes

Assignees

No one assigned

Labels

approved-to-run A repo member has approved this external contribution bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@techalchemy @smoser @ajayk