python3-m2crypto: mark CVE-2020-25657 as patched

Details: https://nvd.nist.gov/vuln/detail/CVE-2020-25657 The commit[1] that fixes the vulnerability has been part of the package since version 0.39.0 [1]: https://git.sr.ht/~mcepl/m2crypto/commit/84c53958def0f510e92119fca14d74f94215827a Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit ba6468f7a09bf8e268ea5ac7939925c362ead876) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
author: Gyorgy Sarvari <skandigraun@gmail.com> 2026-01-23 18:02:19 +0100
committer: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-26 10:04:47 +0530
commit: 582d2ba035b717b33c726cd22a3298adaaf94142 (patch)
tree: 33f6dec183d654a72219e4f39959a9af5218dfd5 /meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb
parent: 509f680b6e4a99ba43c9470c74c25c2ec0ea86c4 (diff)
download: meta-openembedded-582d2ba035b717b33c726cd22a3298adaaf94142.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb b/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb
index 95c57d5d48..736399c9d2 100644
--- a/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb
+++ b/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb
@@ -17,6 +17,7 @@ PYPI_PACKAGE = "M2Crypto"
 inherit pypi siteinfo setuptools3
 CVE_STATUS[CVE-2009-0127] = "disputed: upstream claims there is no bug"
+CVE_STATUS[CVE-2020-25657] = "fixed-version: the used version (0.40.1) contains the fix already"
 DEPENDS += "openssl swig-native"
 RDEPENDS:${PN} += "\
author	Gyorgy Sarvari <skandigraun@gmail.com>	2026-01-23 18:02:19 +0100
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-26 10:04:47 +0530
commit	582d2ba035b717b33c726cd22a3298adaaf94142 (patch)
tree	33f6dec183d654a72219e4f39959a9af5218dfd5 /meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb
parent	509f680b6e4a99ba43c9470c74c25c2ec0ea86c4 (diff)
download	meta-openembedded-582d2ba035b717b33c726cd22a3298adaaf94142.tar.gz

diff --git a/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb b/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb index 95c57d5d48..736399c9d2 100644 --- a/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb +++ b/meta-python/recipes-devtools/python/python3-m2crypto_0.40.1.bb
@@ -17,6 +17,7 @@ PYPI_PACKAGE = "M2Crypto"
17	inherit pypi siteinfo setuptools3	17	inherit pypi siteinfo setuptools3
18		18
19	CVE_STATUS[CVE-2009-0127] = "disputed: upstream claims there is no bug"	19	CVE_STATUS[CVE-2009-0127] = "disputed: upstream claims there is no bug"
		20	CVE_STATUS[CVE-2020-25657] = "fixed-version: the used version (0.40.1) contains the fix already"
20		21
21	DEPENDS += "openssl swig-native"	22	DEPENDS += "openssl swig-native"
22	RDEPENDS:${PN} += "\	23	RDEPENDS:${PN} += "\