From 3f8caf6dfd8d66a423481de6097ab235de9c702d Mon Sep 17 00:00:00 2001
From: Scott Moser <scott.moser@chainguard.dev>
Date: Thu, 27 Jun 2024 18:33:39 +0000
Subject: [PATCH] python-3.10 - address CVE-2024-4032

https://github.com/python/cpython/issues/113171
---
 python-3.10.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/python-3.10.yaml b/python-3.10.yaml
index 2d29b2a150..3c64377f8a 100644
--- a/python-3.10.yaml
+++ b/python-3.10.yaml
@@ -1,7 +1,7 @@
 package:
   name: python-3.10
   version: 3.10.14
-  epoch: 3
+  epoch: 4
   description: "the Python programming language"
   copyright:
     - license: PSF-2.0
@@ -48,6 +48,9 @@ pipeline:
       expected-commit: 976ea78599d71f22e9c0fefc2dc37c1d9fc835a4
       repository: https://github.com/python/cpython.git
       tag: v${{package.version}}
+      cherry-picks: |
+        # https://github.com/python/cpython/issues/113171
+        3.10/c62c9e518b784fe44432a3f4fc265fb95b651906: CVE-2024-4032
 
   - name: Force use of system libraries
     runs: |