diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-01-05 09:31:59 +0100 |
|---|---|---|
| committer | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-01-08 22:03:03 +0100 |
| commit | cc53827cc3f8df8daf0931edc8be2ac17c678e3e (patch) | |
| tree | 5f1946a8d127d6953c3e31397f5cdf479b428767 | |
| parent | d5e94ee2b85601c4176963b58a260375aeab0232 (diff) | |
| download | meta-openembedded-cc53827cc3f8df8daf0931edc8be2ac17c678e3e.tar.gz | |
python3-cbor2: ignore CVE-2025-64076
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-64076
The vunerability was introduced in v5.6.0[1], the recipe version doesn't
contain the vulnerable piece of code.
[1]: https://github.com/agronholm/cbor2/commit/387755eacf0be35591a478d3c67fe10618a6d542
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-cbor2_5.4.2.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-cbor2_5.4.2.bb b/meta-python/recipes-devtools/python/python3-cbor2_5.4.2.bb index 0d0ab6af37..bbdeca7adb 100644 --- a/meta-python/recipes-devtools/python/python3-cbor2_5.4.2.bb +++ b/meta-python/recipes-devtools/python/python3-cbor2_5.4.2.bb | |||
| @@ -12,6 +12,9 @@ SRC_URI += " \ | |||
| 12 | file://run-ptest \ | 12 | file://run-ptest \ |
| 13 | " | 13 | " |
| 14 | 14 | ||
| 15 | # not vulnerable yet, vulnerability was introduced in v5.6.0 | ||
| 16 | CVE_CHECK_IGNORE = "CVE-2025-64076" | ||
| 17 | |||
| 15 | RDEPENDS:${PN}-ptest += " \ | 18 | RDEPENDS:${PN}-ptest += " \ |
| 16 | ${PYTHON_PN}-pytest \ | 19 | ${PYTHON_PN}-pytest \ |
| 17 | ${PYTHON_PN}-unixadmin \ | 20 | ${PYTHON_PN}-unixadmin \ |