From 429266feedb3eccc450d823d207cb1464c4c43dc Mon Sep 17 00:00:00 2001
From: Dan Andresan <Dan.Andresan@enea.com>
Date: Fri, 26 Oct 2018 12:01:51 +0200
Subject: python: Fix CVEs

CVE:  CVE-2017-1000158 CVE-2018-1060 CVE-2018-1061

CVE-2017-1000158 python in the upstream pyro is 2.7.13
CVE-2018-1060 - python in the upstream pyro is 2.7.13
CVE-2018-1061 - python in the upstream pyro is 2.7.13

Reference:

CVE-2017-1000158 https://github.com/python/cpython/commit/c3c9db89273fabc62ea1b48389d9a3000c1c03ae
CVE-2018-1060 https://github.com/python/cpython/commit/937ac1fe069a4dc8471dff205f553d82e724015b
CVE-2018-1061 https://github.com/python/cpython/commit/937ac1fe069a4dc8471dff205f553d82e724015b

Change-Id: I09dc5e7d1754c00d4bcdf57b1124370e3d790e5a
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
Signed-off-by: Adrian Mangeac <adrian.mangeac@enea.com>
---
 recipes-devtools/python/python_2.7.13.bbappend | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 recipes-devtools/python/python_2.7.13.bbappend

(limited to 'recipes-devtools/python/python_2.7.13.bbappend')

diff --git a/recipes-devtools/python/python_2.7.13.bbappend b/recipes-devtools/python/python_2.7.13.bbappend
new file mode 100644
index 0000000..d7ec5e2
--- /dev/null
+++ b/recipes-devtools/python/python_2.7.13.bbappend
@@ -0,0 +1,7 @@
+# look for files in the layer first
+FILESEXTRAPATHS_prepend := "${THISDIR}/${PN}:"
+
+SRC_URI += " \
+        file://CVE-2017-1000158-2.7-bpo-30657-Check-prevent-integer-overflow-in-PySt.patch \
+        file://CVE-2018-1060-CVE-2018-1061-2.7-bpo-32981-Fix-catastrophic-backtracking-vulns-GH.patch \
+        "
-- 
cgit v1.2.3-54-g00ecf