gronod/lfs
1
0
Fork 0
mirror of https://git.linuxfromscratch.org/lfs.git synced 2025-08-14 15:35:09 +01:00
Code Issues Packages Projects Releases Wiki Activity

Python: Fix CVE-2025-8194

Browse Source
This commit is contained in:
Douglas R. Reno 2025-08-06 00:07:56 -05:00
parent 41822a4ac4
commit 9f50c6cfe1
2 changed files with 20 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
chapter01/changelog.xml
View File

@ -40,6 +40,16 @@
appropriate for the entry or if needed the entire day's listitem. appropriate for the entry or if needed the entire day's listitem.
--> -->
<listitem>
<para>2025-08-05</para>
<itemizedlist>
<listitem>
<para>[renodr] - Fixed CVE-2025-8194 in Python. Fixes
<ulink url="&lfs-ticket-root;5774">#5774</ulink>.</para>
</listitem>
</itemizedlist>
</listitem>
<listitem> <listitem>
<para>2025-08-01</para> <para>2025-08-01</para>
<itemizedlist> <itemizedlist>

14
chapter08/python.xml
View File

@ -42,11 +42,17 @@
<sect2 role="installation"> <sect2 role="installation">
<title>Installation of Python 3</title> <title>Installation of Python 3</title>
<!--
<para>First, apply a security patch to the current package:</para>
<screen><userinput remap="pre">patch -Np1 -i ../&python-security-fixes-patch;</userinput></screen> <!-- CVE-2025-8194, see BLFS ticket #21895. The sed adds three lines. Thank
--> you Bruce for the sed! Please do not modify the spacing. -renodr -->
<para>First, fix a security vulnerability in the tarfile module:</para>
<screen><userinput remap="pre">sed -e '/Round/{n;n;a\
# Only non-negative offsets are allowed\
if count &lt; 0:\
raise InvalidHeaderError("invalid offset")
}' -i Lib/tarfile.py</userinput></screen>
<para>Prepare Python for compilation:</para> <para>Prepare Python for compilation:</para>
<screen><userinput remap="configure">./configure --prefix=/usr \ <screen><userinput remap="configure">./configure --prefix=/usr \