From d30de7416fc76f8d298313388074e1f5408f0d11 Mon Sep 17 00:00:00 2001
From: Khem Raj <raj.khem@gmail.com>
Date: Sun, 29 Oct 2023 21:58:07 -0700
Subject: python3-urllib3: Upgrade to 2.0.7

Addresses CVE-2023-45803 [1]

[1] https://github.com/urllib3/urllib3/commit/4e98d57809dacab1cbe625fddeec1a290c478ea9

(From OE-Core rev: befec4d3591bb0dce0e256cf338eb541b2a56b98)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---
 .../python/python3-urllib3_2.0.7.bb                | 24 ++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 meta/recipes-devtools/python/python3-urllib3_2.0.7.bb

(limited to 'meta/recipes-devtools/python/python3-urllib3_2.0.7.bb')

diff --git a/meta/recipes-devtools/python/python3-urllib3_2.0.7.bb b/meta/recipes-devtools/python/python3-urllib3_2.0.7.bb
new file mode 100644
index 0000000000..c286838086
--- /dev/null
+++ b/meta/recipes-devtools/python/python3-urllib3_2.0.7.bb
@@ -0,0 +1,24 @@
+SUMMARY = "Python HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more"
+HOMEPAGE = "https://github.com/shazow/urllib3"
+LICENSE = "MIT"
+LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=52d273a3054ced561275d4d15260ecda"
+
+SRC_URI[sha256sum] = "c97dfde1f7bd43a71c8d2a58e369e9b2bf692d1334ea9f9cae55add7d0dd0f84"
+
+inherit pypi python_hatchling
+
+RDEPENDS:${PN} += "\
+    ${PYTHON_PN}-certifi \
+    ${PYTHON_PN}-cryptography \
+    ${PYTHON_PN}-email \
+    ${PYTHON_PN}-idna \
+    ${PYTHON_PN}-json \
+    ${PYTHON_PN}-netclient \
+    ${PYTHON_PN}-pyopenssl \
+    ${PYTHON_PN}-threading \
+    ${PYTHON_PN}-logging \
+"
+
+CVE_PRODUCT = "urllib3"
+
+BBCLASSEXTEND = "native nativesdk"
-- 
cgit v1.2.3-54-g00ecf