diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-02-02 17:37:12 +0100 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2026-02-04 20:53:30 -0800 |
| commit | 3988e13c0abc4f032ffb8909eef273f3ee1c48b7 (patch) | |
| tree | 2eaaaed14139db569bb6fb880c4638cdd7975d0d /meta-python/recipes-devtools/python | |
| parent | 2865b67e293ebfc706a5531ef79bfb9826d8cc6d (diff) | |
| download | meta-openembedded-3988e13c0abc4f032ffb8909eef273f3ee1c48b7.tar.gz | |
python3-pyjwt: ignore CVE-2025-45768
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-45768
The CVE is disputed: though the vulnerability is there, but it comes
from incorrect configuration of the library by the main application.
Due to this, ignore this CVE.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-python/recipes-devtools/python')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb b/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb index 37675f1b63..0a928dc2fa 100644 --- a/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb +++ b/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb | |||
| @@ -9,6 +9,8 @@ SRC_URI[sha256sum] = "3cc5772eb20009233caf06e9d8a0577824723b44e6648ee0a2aedb6cf9 | |||
| 9 | 9 | ||
| 10 | PYPI_PACKAGE = "pyjwt" | 10 | PYPI_PACKAGE = "pyjwt" |
| 11 | CVE_PRODUCT = "pyjwt" | 11 | CVE_PRODUCT = "pyjwt" |
| 12 | CVE_STATUS[CVE-2025-45768] = "disputed: vulnerability can be avoided if the library is used correctly" | ||
| 13 | |||
| 12 | inherit pypi python_setuptools_build_meta | 14 | inherit pypi python_setuptools_build_meta |
| 13 | 15 | ||
| 14 | RDEPENDS:${PN} = "\ | 16 | RDEPENDS:${PN} = "\ |