diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-01-07 10:27:48 +0100 |
|---|---|---|
| committer | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-01-08 22:03:03 +0100 |
| commit | 53abba638b08b5efb36f3a763d86a0a1fa085eec (patch) | |
| tree | d870df7d1b451df17754e10748490051bcc3f225 /meta-python/recipes-devtools | |
| parent | 1bd2effd23f752dc53eafb8032c8874fd36f872d (diff) | |
| download | meta-openembedded-53abba638b08b5efb36f3a763d86a0a1fa085eec.tar.gz | |
python3-m2crypto: ignore CVE-2009-0127
Details: https://nvd.nist.gov/vuln/detail/CVE-2009-0127
The vulnerability is disputed[1] by upstream:
"There is no vulnerability in M2Crypto. Nowhere in the functions
are the return values of OpenSSL functions interpreted incorrectly.
The functions provide an interface to their users that may be
considered confusing, but is not incorrect, nor it is a vulnerability."
[1]: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-0127
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Diffstat (limited to 'meta-python/recipes-devtools')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-m2crypto_0.38.0.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-m2crypto_0.38.0.bb b/meta-python/recipes-devtools/python/python3-m2crypto_0.38.0.bb index 155a9066ca..8fc9c9ce4f 100644 --- a/meta-python/recipes-devtools/python/python3-m2crypto_0.38.0.bb +++ b/meta-python/recipes-devtools/python/python3-m2crypto_0.38.0.bb | |||
| @@ -45,4 +45,7 @@ export SWIG_FEATURES | |||
| 45 | 45 | ||
| 46 | export STAGING_DIR | 46 | export STAGING_DIR |
| 47 | 47 | ||
| 48 | # disputed, upstream claims there is no bug | ||
| 49 | CVE_CHECK_IGNORE = "CVE-2009-0127" | ||
| 50 | |||
| 48 | BBCLASSEXTEND = "native" | 51 | BBCLASSEXTEND = "native" |