diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2015-03-04 09:46:10 +0100 |
---|---|---|
committer | Tudor Florea <tudor.florea@enea.com> | 2015-07-06 20:19:38 +0200 |
commit | 72bec03e72908b002355a3dba39c9b9caec2b473 (patch) | |
tree | b2bb492ca2ad8432d40f412409ef8658dc087243 /meta/recipes-devtools/python/python_2.7.3.bb | |
parent | 4ec7570ee9c2226cfa0341c7e0b35362b7b68278 (diff) | |
download | poky-72bec03e72908b002355a3dba39c9b9caec2b473.tar.gz |
python: Disables SSLv3
This is related to "SSLv3 POODLE vulnerability" CVE-2014-3566
Building python without SSLv3 support when openssl is built without
any support for SSLv3 (e.g. by adding EXTRA_OECONF = " -no-ssl3" in
the openssl recipes).
Backport from:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768611#22
[python2.7-nossl3.patch] only Modules/_ssl.c is backported.
References:
https://bugzilla.yoctoproject.org/show_bug.cgi?id=7015
https://bugzilla.yoctoproject.org/show_bug.cgi?id=6843
http://bugs.python.org/issue22638
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Diffstat (limited to 'meta/recipes-devtools/python/python_2.7.3.bb')
-rw-r--r-- | meta/recipes-devtools/python/python_2.7.3.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/python/python_2.7.3.bb b/meta/recipes-devtools/python/python_2.7.3.bb index bbe16eb5d2..28ea2347e3 100644 --- a/meta/recipes-devtools/python/python_2.7.3.bb +++ b/meta/recipes-devtools/python/python_2.7.3.bb | |||
@@ -37,6 +37,7 @@ SRC_URI += "\ | |||
37 | file://python-fix-build-error-with-Readline-6.3.patch \ | 37 | file://python-fix-build-error-with-Readline-6.3.patch \ |
38 | file://python-2.7.3-CVE-2014-1912.patch \ | 38 | file://python-2.7.3-CVE-2014-1912.patch \ |
39 | file://json-flaw-CVE-2014-4616.patch \ | 39 | file://json-flaw-CVE-2014-4616.patch \ |
40 | file://python2.7.3-nossl3.patch \ | ||
40 | " | 41 | " |
41 | 42 | ||
42 | S = "${WORKDIR}/Python-${PV}" | 43 | S = "${WORKDIR}/Python-${PV}" |