fix(python-ecdsa): CVE-2026-33936

[deepin-ci-robot]

Security Update

CVE-2026-33936 DER validation

Add quilt patch to fix CVE-2026-33936 by rejecting truncated DER lengths
in octet and constructed functions.

This patch:

• Adds length validation in remove_constructed()
• Adds length validation in remove_octet_string()
• Adds corresponding unit tests

Note: remove_implicit() function does not exist in this version, so
only the applicable functions are patched.

• Upstream: tlsfuzzer/python-ecdsa@bd66899
• Generated-By: uos/glm-5.1
• Co-Authored-By: hudeng hudeng@deepin.org

---

Generated by AI

[deepin-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign qaqland for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• https:/raw.githubusercontent.com/deepin-community/template-repository/master/debian/deepin/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[github-actions]

TAG Bot

TAG: 0.19.0-2+deepin1
EXISTED: no
DISTRIBUTION: UNRELEASED

[hudeng-go]

/integrate

[github-actions]

AutoIntegrationPr Bot
auto integrate with pr url: deepin-community/Repository-Integration#3915
PrNumber: 3915
PrBranch: auto-integration-25144669040