From 87ce1e904bdce19592815a73ba5c4cbe87316c6f Mon Sep 17 00:00:00 2001
From: Gyorgy Sarvari <skandigraun@gmail.com>
Date: Thu, 5 Feb 2026 07:59:51 +0100
Subject: python3-virtualenv: patch CVE-2026-22702

Details: https://nvd.nist.gov/vuln/detail/CVE-2026-22702

Backport the patch that is referenced by the NVD advisory.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
---
 meta-python/recipes-devtools/python/python3-virtualenv_20.35.4.bb | 1 +
 1 file changed, 1 insertion(+)

(limited to 'meta-python/recipes-devtools/python/python3-virtualenv_20.35.4.bb')

diff --git a/meta-python/recipes-devtools/python/python3-virtualenv_20.35.4.bb b/meta-python/recipes-devtools/python/python3-virtualenv_20.35.4.bb
index 28444f12c4..e40aa98863 100644
--- a/meta-python/recipes-devtools/python/python3-virtualenv_20.35.4.bb
+++ b/meta-python/recipes-devtools/python/python3-virtualenv_20.35.4.bb
@@ -6,6 +6,7 @@ HOMEPAGE = "https://github.com/pypa/virtualenv"
 LICENSE = "MIT"
 LIC_FILES_CHKSUM = "file://LICENSE;md5=0ce089158cf60a8ab6abb452b6405538"
 
+SRC_URI += "file://CVE-2026-22702.patch"
 SRC_URI[sha256sum] = "643d3914d73d3eeb0c552cbb12d7e82adf0e504dbf86a3182f8771a153a1971c"
 
 BBCLASSEXTEND = "native nativesdk"
-- 
cgit v1.2.3-54-g00ecf