Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork33.3k
gh-135034: Normalize link targets in tarfile, addos.path.realpath(strict='allow_missing')#135037
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Uh oh!
There was an error while loading.Please reload this page.
Conversation
…path(strict='allow_missing')`Addresses CVEs 2024-12718, 2025-4138, 2025-4330, and 2025-4517.Co-authored-by: Petr Viktorin <encukou@gmail.com>Signed-off-by: Łukasz Langa <lukasz@langa.pl>
See also#71189. |
Uh oh!
There was an error while loading.Please reload this page.
Co-authored-by: Adam Turner <9087854+AA-Turner@users.noreply.github.com>
Uh oh!
There was an error while loading.Please reload this page.
Uh oh!
There was an error while loading.Please reload this page.
To align with this, there'd be a |
bedevere-bot commentedJun 2, 2025
🤖 New build scheduled with the buildbot fleet by@encukou for commit5af66c6 🤖 Results will be shown at: https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F135037%2Fmerge If you want to schedule another build, you need to add the🔨 test-with-buildbots label again. |
Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
This reverts commitfd2013a.
Uh oh!
There was an error while loading.Please reload this page.
Addresses CVEs 2024-12718, 2025-4138, 2025-4330, and 2025-4517.
[edit@encukou]: Also addressesCVE-2025-4435. Sorry for leaving that out of the commit messages.
Co-authored-by: Petr Viktorinencukou@gmail.com
Signed-off-by: Łukasz Langalukasz@langa.pl
filter="tar"/filter="data") #135034📚 Documentation preview 📚:https://cpython-previews--135037.org.readthedocs.build/