File _patchinfo of Package patchinfo.35301
<patchinfo incident="35301">
<issue tracker="cve" id="2024-50602"/>
<issue tracker="bnc" id="1232590">VUL-0: CVE-2024-50602: python3-wxPython,python,python-wxPython: libexpat: DoS via XML_ResumeParser</issue>
<issue tracker="bnc" id="1228252">Please provide wxPython for Python 3.11</issue>
<packager>dgarcia</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for python-wxPython</summary>
<description>This update for python-wxPython fixes the following issues:
Security issue fixed:
- CVE-2024-50602: Fixed a denial of service in the vendored libexpat's XML_ResumeParser function (bsc#1232590).
Non-security issues fixed:
- rebuilt for python 3.11 (bsc#1228252).
- add repack script, do not include packaging/ dir in sources
- Reduce complexity by not rewriting subpackages at all.
- Appease factory-auto bot about package src name.
- Add additional patches fixing the situation with Python 3.10
compatibility.
- Split out the TW python3 flavors into multibuild using the
python_subpackage_only mechanism: Multiple python3 flavors
sequentially require too much space and time in one build.
</description>
</patchinfo>