diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-02-05 07:59:46 +0100 |
|---|---|---|
| committer | Anuj Mittal <anuj.mittal@oss.qualcomm.com> | 2026-02-19 08:20:24 +0530 |
| commit | 7049927e656b5d9ca0dacc3f6c04b9c7afad23aa (patch) | |
| tree | 25889fbd9d853046c601e1e0d83ff99c5194b46b /meta-python/recipes-devtools/python | |
| parent | f17cb75caceee338dde89a0f36be7981acb5b4c1 (diff) | |
| download | meta-openembedded-7049927e656b5d9ca0dacc3f6c04b9c7afad23aa.tar.gz | |
python3-pyjwt: ignore CVE-2025-45768
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-45768
The CVE is disputed: though the vulnerability is there, but it comes
from incorrect configuration of the library by the main application.
Due to this, ignore this CVE.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
Diffstat (limited to 'meta-python/recipes-devtools/python')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb b/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb index d23347878e..3954c526f5 100644 --- a/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb +++ b/meta-python/recipes-devtools/python/python3-pyjwt_2.10.1.bb | |||
| @@ -8,6 +8,8 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=e4b56d2c9973d8cf54655555be06e551" | |||
| 8 | SRC_URI[sha256sum] = "3cc5772eb20009233caf06e9d8a0577824723b44e6648ee0a2aedb6cf9381953" | 8 | SRC_URI[sha256sum] = "3cc5772eb20009233caf06e9d8a0577824723b44e6648ee0a2aedb6cf9381953" |
| 9 | 9 | ||
| 10 | PYPI_PACKAGE = "pyjwt" | 10 | PYPI_PACKAGE = "pyjwt" |
| 11 | CVE_STATUS[CVE-2025-45768] = "disputed: vulnerability can be avoided if the library is used correctly" | ||
| 12 | |||
| 11 | inherit pypi python_setuptools_build_meta | 13 | inherit pypi python_setuptools_build_meta |
| 12 | 14 | ||
| 13 | RDEPENDS:${PN} = "\ | 15 | RDEPENDS:${PN} = "\ |