[3.10] gh-145506: Fixes CVE-2026-2297 by ensuring SourcelessFileLoader uses io.open_code (GH-145507) · python/cpython@218332d

Triggered via pull request March 6, 2026 15:54

StanFromIreland

synchronize #145516

miss-islington:backport-a51b1b5-3.10

Status Success

Total duration 12m 41s

Artifacts –

build.yml

on: pull_request

Check for source changes

8s

Check if the ABI has changed

1m 15s

Check if generated files are up to date

Matrix: Ubuntu SSL tests with OpenSSL

Annotations

8 warnings

Check if the ABI has changed

The `python-version` input is not set. The version of Python currently in `PATH` will be used.

Check if generated files are up to date

The `python-version` input is not set. The version of Python currently in `PATH` will be used.

Ubuntu: Objects/longobject.c#L1763

‘kind’ may be used uninitialized [-Wmaybe-uninitialized]

Ubuntu: Objects/longobject.c#L1940

‘kind’ may be used uninitialized [-Wmaybe-uninitialized]

macOS

tcl-tk@8 8.6.17 is already installed and up-to-date. To reinstall 8.6.17, run: brew reinstall tcl-tk@8

macOS

gdbm 1.26 is already installed and up-to-date. To reinstall 1.26, run: brew reinstall gdbm

macOS

xz 5.8.2 is already installed and up-to-date. To reinstall 5.8.2, run: brew reinstall xz

macOS

pkgconf 2.5.1 is already installed and up-to-date. To reinstall 2.5.1, run: brew reinstall pkgconf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[3.10] gh-145506: Fixes CVE-2026-2297 by ensuring SourcelessFileLoader uses io.open_code (GH-145507) #184828

Summary

[3.10] gh-145506: Fixes CVE-2026-2297 by ensuring SourcelessFileLoader uses io.open_code (GH-145507) #184828

Uh oh!

build.yml

Annotations