1 files changed, 10 insertions, 0 deletions
diff --git a/meta/recipes-devtools/python/python.inc b/meta/recipes-devtools/python/python.inc
index b093ea6f09..5d280dc63b 100644
--- a/meta/recipes-devtools/python/python.inc
+++ b/meta/recipes-devtools/python/python.inc
@@ -19,6 +19,16 @@ UPSTREAM_CHECK_REGEX = "[Pp]ython-(?P<pver>2(\.\d+)+).tar"
 CVE_PRODUCT = "python"
+# Upstream agreement is that these are not security issues:
+# https://bugs.python.org/issue32367
+CVE_CHECK_WHITELIST += "CVE-2017-17522"
+# https://bugs.python.org/issue32056
+CVE_CHECK_WHITELIST += "CVE-2017-18207"
+# Windows-only, "It was determined that this is a longtime behavior
+# of Python that cannot really be altered at this point."
+CVE_CHECK_WHITELIST += "CVE-2015-5652"
 PYTHON_MAJMIN = "2.7"
 inherit autotools pkgconfig

diff --git a/meta/recipes-devtools/python/python.inc b/meta/recipes-devtools/python/python.inc index b093ea6f09..5d280dc63b 100644 --- a/meta/recipes-devtools/python/python.inc +++ b/meta/recipes-devtools/python/python.inc
@@ -19,6 +19,16 @@ UPSTREAM_CHECK_REGEX = "[Pp]ython-(?P<pver>2(\.\d+)+).tar"
19		19
20	CVE_PRODUCT = "python"	20	CVE_PRODUCT = "python"
21		21
		22	# Upstream agreement is that these are not security issues:
		23	# https://bugs.python.org/issue32367
		24	CVE_CHECK_WHITELIST += "CVE-2017-17522"
		25	# https://bugs.python.org/issue32056
		26	CVE_CHECK_WHITELIST += "CVE-2017-18207"
		27
		28	# Windows-only, "It was determined that this is a longtime behavior
		29	# of Python that cannot really be altered at this point."
		30	CVE_CHECK_WHITELIST += "CVE-2015-5652"
		31
22	PYTHON_MAJMIN = "2.7"	32	PYTHON_MAJMIN = "2.7"
23		33
24	inherit autotools pkgconfig	34	inherit autotools pkgconfig