python3: ignore CVE-2015-20107 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Ross Burton <ross.burton@arm.com>	2022-04-25 12:24:44 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-05-09 11:51:59 +0100
commit	4dfdb53c8ac5bfd525b45686279ac5891aabd872 (patch)
tree	8fcf52d2299c40b426c4b0097aebdc14a09687d1 /meta/recipes-devtools/python/python3-dbus_1.2.16.bb
parent	64f632c93f487004e721ec7b4ae61b817157037b (diff)
download	poky-4dfdb53c8ac5bfd525b45686279ac5891aabd872.tar.gz

python3: ignore CVE-2015-20107

CVE-2015-20107 describes an arbitrary command execution in the mailcap module, but this is by design in mailcap and needs to be worked around by the calling application. Upstream Python will be documenting this flaw in the library reference, and it is likely that the mailcap module will be deprecated and removed in the future. (From OE-Core rev: 1ed7bb74d35f08af3babf73c68ee01af5f28a50b) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 85fac8408baf92d8b71946f5bfea92952b7eab01) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-devtools/python/python3-dbus_1.2.16.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: