diff options
| author | Ankur Tyagi <ankur.tyagi85@gmail.com> | 2026-01-25 13:36:23 +1300 |
|---|---|---|
| committer | Anuj Mittal <anuj.mittal@oss.qualcomm.com> | 2026-01-26 10:04:49 +0530 |
| commit | daacf501a1834d0a09b9fca20988b5e28e5bd173 (patch) | |
| tree | 82844bfe1da3fd2b5e157f636f9283cfe91c73a4 /meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb | |
| parent | 8331a444fd26bbff88f4233a5a60f2133044cf8c (diff) | |
| download | meta-openembedded-daacf501a1834d0a09b9fca20988b5e28e5bd173.tar.gz | |
python3-cbor2: patch CVE-2025-68131
Backport the patch[1] which fixes this vulnerability as mentioned in the
comment[2].
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68131
[1] https://github.com/agronholm/cbor2/commit/f1d701cd2c411ee40bb1fe383afe7f365f35abf0
[2] https://github.com/agronholm/cbor2/pull/268#issuecomment-3719179000
Dropped changes to the changelog from the original commit.
Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
Diffstat (limited to 'meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb b/meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb index a5c4154e49..69e5daba2a 100644 --- a/meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb +++ b/meta-python/recipes-devtools/python/python3-cbor2_5.6.4.bb | |||
| @@ -13,6 +13,7 @@ DEPENDS += "python3-setuptools-scm-native" | |||
| 13 | SRC_URI += " \ | 13 | SRC_URI += " \ |
| 14 | file://run-ptest \ | 14 | file://run-ptest \ |
| 15 | file://CVE-2025-64076.patch \ | 15 | file://CVE-2025-64076.patch \ |
| 16 | file://CVE-2025-68131.patch \ | ||
| 16 | " | 17 | " |
| 17 | 18 | ||
| 18 | RDEPENDS:${PN}-ptest += " \ | 19 | RDEPENDS:${PN}-ptest += " \ |