From 9cbc4befe55716bfcf60616cd695318a5477b32d Mon Sep 17 00:00:00 2001 From: Gyorgy Sarvari Date: Mon, 23 Feb 2026 20:18:49 +0100 Subject: python3-werkzeug: upgrade 3.1.5 -> 3.1.6 Contains fix for CVE-2026-27199 Changelog: safe_join on Windows does not allow special devices names in multi-segment paths Signed-off-by: Gyorgy Sarvari Signed-off-by: Khem Raj --- .../python/python3-werkzeug_3.1.6.bb | 26 ++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 meta-python/recipes-devtools/python/python3-werkzeug_3.1.6.bb (limited to 'meta-python/recipes-devtools/python/python3-werkzeug_3.1.6.bb') diff --git a/meta-python/recipes-devtools/python/python3-werkzeug_3.1.6.bb b/meta-python/recipes-devtools/python/python3-werkzeug_3.1.6.bb new file mode 100644 index 0000000000..edddca72e0 --- /dev/null +++ b/meta-python/recipes-devtools/python/python3-werkzeug_3.1.6.bb @@ -0,0 +1,26 @@ +SUMMARY = "The comprehensive WSGI web application library" +DESCRIPTION = "\ +Werkzeug started as simple collection of various utilities for WSGI \ +applications and has become one of the most advanced WSGI utility modules. \ +It includes a powerful debugger, full featured request and response objects, \ +HTTP utilities to handle entity tags, cache control headers, HTTP dates, \ +cookie handling, file uploads, a powerful URL routing system and a bunch \ +of community contributed addon modules." +HOMEPAGE = "https://werkzeug.palletsprojects.com" +LICENSE = "BSD-3-Clause" +LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=5dc88300786f1c214c1e9827a5229462" + +SRC_URI[sha256sum] = "210c6bede5a420a913956b4791a7f4d6843a43b6fcee4dfa08a65e93007d0d25" + +CVE_PRODUCT = "werkzeug" + +inherit pypi python_flit_core + +RDEPENDS:${PN} += " \ + python3-markupsafe \ + python3-logging \ + python3-profile \ + python3-compression \ + python3-json \ + python3-difflib \ +" -- cgit v1.2.3-54-g00ecf