From 478f5eaa61d435777b566dc7ac589ea88a375288 Mon Sep 17 00:00:00 2001 From: Soumya Sambu Date: Fri, 7 Nov 2025 17:03:56 +0530 Subject: python3-urllib3: Upgrade 1.26.18 -> 1.26.20 Includes fix for CVE-2024-37891 Changelog: ---------- https://github.com/urllib3/urllib3/blob/1.26.20/CHANGES.rst (From OE-Core rev: 2e805113fe0488224f05524360eeff729dd12d91) Signed-off-by: Soumya Sambu Signed-off-by: Steve Sakoman --- .../python/python3-urllib3_1.26.18.bb | 27 ---------------------- .../python/python3-urllib3_1.26.20.bb | 27 ++++++++++++++++++++++ 2 files changed, 27 insertions(+), 27 deletions(-) delete mode 100644 meta/recipes-devtools/python/python3-urllib3_1.26.18.bb create mode 100644 meta/recipes-devtools/python/python3-urllib3_1.26.20.bb (limited to 'meta/recipes-devtools') diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.18.bb b/meta/recipes-devtools/python/python3-urllib3_1.26.18.bb deleted file mode 100644 index b26c9ad2fa..0000000000 --- a/meta/recipes-devtools/python/python3-urllib3_1.26.18.bb +++ /dev/null @@ -1,27 +0,0 @@ -SUMMARY = "Python HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more" -HOMEPAGE = "https://github.com/shazow/urllib3" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c" - -SRC_URI[sha256sum] = "f8ecc1bba5667413457c529ab955bf8c67b45db799d159066261719e328580a0" - -inherit pypi setuptools3 - -SRC_URI += " \ - file://CVE-2025-50181.patch \ -" - -RDEPENDS:${PN} += "\ - ${PYTHON_PN}-certifi \ - ${PYTHON_PN}-cryptography \ - ${PYTHON_PN}-email \ - ${PYTHON_PN}-idna \ - ${PYTHON_PN}-netclient \ - ${PYTHON_PN}-pyopenssl \ - ${PYTHON_PN}-threading \ - ${PYTHON_PN}-logging \ -" - -CVE_PRODUCT = "urllib3" - -BBCLASSEXTEND = "native nativesdk" diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.20.bb b/meta/recipes-devtools/python/python3-urllib3_1.26.20.bb new file mode 100644 index 0000000000..58988e4205 --- /dev/null +++ b/meta/recipes-devtools/python/python3-urllib3_1.26.20.bb @@ -0,0 +1,27 @@ +SUMMARY = "Python HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more" +HOMEPAGE = "https://github.com/shazow/urllib3" +LICENSE = "MIT" +LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c" + +SRC_URI[sha256sum] = "40c2dc0c681e47eb8f90e7e27bf6ff7df2e677421fd46756da1161c39ca70d32" + +inherit pypi setuptools3 + +SRC_URI += " \ + file://CVE-2025-50181.patch \ +" + +RDEPENDS:${PN} += "\ + ${PYTHON_PN}-certifi \ + ${PYTHON_PN}-cryptography \ + ${PYTHON_PN}-email \ + ${PYTHON_PN}-idna \ + ${PYTHON_PN}-netclient \ + ${PYTHON_PN}-pyopenssl \ + ${PYTHON_PN}-threading \ + ${PYTHON_PN}-logging \ +" + +CVE_PRODUCT = "urllib3" + +BBCLASSEXTEND = "native nativesdk" -- cgit v1.2.3-54-g00ecf