meta-openembedded

CaROS/meta-openembedded

Fork 0

mirror of git://git.openembedded.org/meta-openembedded synced 2026-01-01 13:58:06 +00:00

Commit Graph

Author	SHA1	Message	Date
Gyorgy Sarvari	96a2496b65	python3-cbor2: set CVE_PRODUCT The default, "python:cbor2" CVE_PRODUCT is not appropriate for this recipe, because most associated CVEs use "agronholm:cbor2" CPE. Set the CVE_PRODUCT to cbor2, so it will match the currently used CPE, and in case there will be future python:cbor2 CPEs also, they will be matched too. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Wang Mingyu	64b87fbe6c	python3-cbor2: upgrade 5.7.0 -> 5.7.1 Changelog: =========== - Improved performance on decoding large definite bytestrings - Fixed a read(-1) vulnerability caused by boundary handling error Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00

Author

SHA1

Message

Date

Gyorgy Sarvari

96a2496b65

python3-cbor2: set CVE_PRODUCT

The default, "python:cbor2" CVE_PRODUCT is not appropriate for this
recipe, because most associated CVEs use "agronholm:cbor2" CPE.

Set the CVE_PRODUCT to cbor2, so it will match the currently used
CPE, and in case there will be future python:cbor2 CPEs also, they
will be matched too.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>

2025-12-31 08:28:51 -08:00

Wang Mingyu

64b87fbe6c

python3-cbor2: upgrade 5.7.0 -> 5.7.1

Changelog:
===========
- Improved performance on decoding large definite bytestrings
- Fixed a read(-1) vulnerability caused by boundary handling error

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>

2025-10-29 10:14:13 -07:00

2 Commits