diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-05-07 21:06:11 -0700 |
|---|---|---|
| committer | Anuj Mittal <anuj.mittal@oss.qualcomm.com> | 2026-05-21 08:57:42 +0530 |
| commit | 3fd10def4959e04075ad0a60907e46c885fc7558 (patch) | |
| tree | 198653d1a39d21164683715fcd80ab817ca5ccc8 /meta-python | |
| parent | 6b76759967d94a114631007904fc74440a70e129 (diff) | |
| download | meta-openembedded-3fd10def4959e04075ad0a60907e46c885fc7558.tar.gz | |
python3-ecdsa: set CVE_PRODUCT
Set the correct CVE_PRODUCT value, the default python: ecdsa doesn't
match relevant entries.
The correct values were taken from the CVE db, by checking which CVEs
are relevant.
See CVE db query:
sqlite> select * from products where product like '%ecdsa%';
CVE-2019-14853|python-ecdsa_project|python-ecdsa|||0.13.3|<
CVE-2019-14859|python-ecdsa_project|python-ecdsa|||0.13.3|<
CVE-2020-12607|antonkueltz|fastecdsa|||2.1.2|<
CVE-2021-43568|starkbank|elixir_ecdsa|1.0.0|=||
CVE-2021-43569|starkbank|ecdsa-dotnet|1.3.2|=||
CVE-2021-43570|starkbank|ecdsa-java|1.0.0|=||
CVE-2021-43571|starkbank|ecdsa-node|1.1.2|=||
CVE-2021-43572|starkbank|ecdsa-python|||2.0.1|<
CVE-2022-24884|ecdsautils_project|ecdsautils|||0.4.1|<
CVE-2024-21502|antonkueltz|fastecdsa|||2.3.2|<
CVE-2024-23342|tlsfuzzer|ecdsa|||0.18.0|<=
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 7f962ef1557a291545646470c03fd9c4a23eb7d9)
Signed-off-by: Himanshu Jadon <hjadon@cisco.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
Diffstat (limited to 'meta-python')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-ecdsa_0.19.0.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-ecdsa_0.19.0.bb b/meta-python/recipes-devtools/python/python3-ecdsa_0.19.0.bb index 0ae93fe3d9..1ec81d26f9 100644 --- a/meta-python/recipes-devtools/python/python3-ecdsa_0.19.0.bb +++ b/meta-python/recipes-devtools/python/python3-ecdsa_0.19.0.bb | |||
| @@ -13,6 +13,8 @@ SRC_URI += " \ | |||
| 13 | file://CVE-2026-33936.patch \ | 13 | file://CVE-2026-33936.patch \ |
| 14 | " | 14 | " |
| 15 | 15 | ||
| 16 | CVE_PRODUCT = "python-ecdsa_project:python-ecdsa tlsfuzzer:ecdsa" | ||
| 17 | |||
| 16 | RDEPENDS:${PN}-ptest += " \ | 18 | RDEPENDS:${PN}-ptest += " \ |
| 17 | python3-hypothesis \ | 19 | python3-hypothesis \ |
| 18 | python3-pytest \ | 20 | python3-pytest \ |
