Update status for:
CVE-2007-6421, CVE-2007-6422, CVE-2007-6423, CVE-2008-2168
CPE is incorrect, the current version (2.4.59) is not affected.
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The recipe used in the `meta-openembedded` is a different xsp package compared to the one which has the CVE issue.
Package used in `meta-embedded`: maemo xsp http://repository.maemo.org/pool/maemo/ossw/source/x/xsp/
Package with CVE issue: mono xsp https://github.com/mono/xsp
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The current version (0.21.2) is not affected by the CVE which affects versions earlier than 0.21.2.
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The current version (0.9.5.0) is not affected by the CVE which affects versions at least earlier than 0.9.4.0.
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The recipe used in the `meta-openembedded` is a different links package compared to the one which has the CVE issue.
Package used in `meta-embedded`: twibright links http://links.twibright.com/download.php
Package with CVE issue: Maian Links https://www.maianmedia.com/
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The version don't match and only the Jenkins plugin is affected.
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The recipe used in the `meta-openembedded` is a different mercurial package compared to the one which has the CVE issue.
Package used in `meta-embedded`: https://www.mercurial-scm.org/
Package with CVE issue is a Jenkins plugin: https://plugins.jenkins.io/mercurial/
(This is reflected in the CPE)
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Update status for:
CVE-2016-7534, CVE-2016-7535, CVE-2016-7536, CVE-2016-7537, CVE-2016-7538, CVE-2017-5506, CVE-2017-5509, CVE-2017-5510, CVE-2017-5511, CVE-2007-1667
CPE is incorrect, the current version (7.1.1) is not affected.
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
libee had been used by rsyslog but the library never relly panned out.
It has been declared to be obsolete:
Early versions of rsyslog and liblognorm used it for representing structured content.
However, this is long gone. We do not know of any other user. So libee should be of
no further interest and is provided here solely for historical reasons.
https://github.com/rsyslog/libee
Also remove references to libee in:
meta-oe/conf/include/ptest-packagelists-meta-oe.inc
meta-oe/recipes-core/packagegroups/packagegroup-meta-oe.bb
Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Following warning occurs when building with ptests enabled:
WARNING: cjson-1.7.17-r0 do_package_qa: QA Issue: File /usr/lib/cjson/ptest/CTestTestfile.cmake in package cjson-ptest contains reference to TMPDIR
File /usr/lib/cjson/ptest/tests/CTestTestfile.cmake in package cjson-ptest contains reference to TMPDIR
File /usr/lib/cjson/ptest/fuzzing/CTestTestfile.cmake in package cjson-ptest contains reference to TMPDIR [buildpaths]
The cmake files also contain full paths to original CMakeLists.txt file
in _BACKTRACE_TRIPLES property;
These are not needed for successful ptests as we don't install the
CMakeLists.txt files anyway.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
* Avoid FP overflow in NormEvidenceOf
* Small build fixes and code improvements
* Fix setup of datadir on installations with Conda
* Fix FP exception in Wordrec::angle_change
* Build fixes, code refactoring and other smaller changes.
* Fix grey result of indexed PNG in pdfrenderer.
* Rename frk -> deu_latf (ISO 639-3, ISO 15924).
* Remove broken Dockerfile.
* Fixes for several issues reported by Coverity Scan.
* Remove unsupported OpenCL code and related API functions
* Facilitate vectorization for generic build
* Add PAGE XML renderer / export
* Support training without lstmf files.
* Improve CCUtil::main_setup (fixes issue #4230 related to Coda).
* Allow for text angle/gradient to be retrieved
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
* Rewrite a recursive function to be iterative in linearization to
enable more complex files to be linearized, especially on Windows.
* Avoid non-standard use of 'std::basic_string_view'.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- Support MSVC 17.10
- CMake 3.5+ requirement
- Support CPython 3.13 with windows lib finding fix
- Don't die on PermissionError during chmod
- Remove usage of deprecated distutils in cmake files
- Use first available option for vswhere output
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
* Fixed 'recorder' not saving and loading response headers with yaml files.
* Mulligan on 0.25.1 to run release pipeline correctly.
* Added 'matchers.body_matcher' for matching string request bodies.
* Fixed tests failures during RPM package builds.
* Fix mocked HEAD responses that have 'Content-Length' set.
* Fixed error messages when matches fail: inputs are not sorted or reformatted.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- Fix parsing of INFO response
- Handle lists in the response of INFO
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
- docs: correct Homepage URL
- Bump and fix CI for new setuptools
- Move changelog to GH releases
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Reduce verbosity of "Waiting for suitable server to become available" log message
- Add Custom CodeQL Scanning
- Use deferred imports instead of lazy module loading
- Optimize find/aggregate/command by avoiding duplicate calls to _get_topology
- Improve import time on Windows
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Make a response in the tests a MISPUser obj.
- Tests failing du to missing error.
- Get the tests to pass.
- Properly load AnalystData from dict.
- More changes to get the tests to pass.
- [event-report] Make sure to generate an UUID.
- Pass kwargs to abstract.
- [analyst-data] Added initial support of analyst data concept and
functions - WiP.
- A bit more refactoring.
- Use from_dict in the mixin to initialize the objects.
- [analyst-data] Added improvements, API endpoints and tests.
- [analyst-data] Make sure to include note_type_name.
- Make mypy happy, change inheritance.
- Allow orgc context for search_galaxy_clusters.
- [analyst-data] Continued implementation of analyst-data support.
- Allow orgc context for search_galaxy_clusters.
- Add test case.
- Add attach galaxy cluster method.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
* E721: Fix false positive of the form 'x.type(...) =='.
* E502: Fix false-negative with a backslash escape in a comment.
* E204: New lint forbidding whitespace after decorator '@'.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
New features:
-------------
Allow passing exception classes for KeyboardInterrupt and EOFError in PromptSession.
Fixes:
----------
Compute padding parameters for Box widget lazily.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
- Properly propagating exceptions for NFS read-only lock issues and added support
for being able to choose between lockf and flock
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
- Fix detection of invalid conversion between offset and delta units.
- Added dBW, decibel Watts, which is used in RF high power applications
- NumPy 2.0 support
- Implement numpy roll (Related to issue #981)
- Implement numpy correlate
- Add 'dim_sort' function to _formatter_helpers.
- Add 'dim_order' and 'default_sort_func' properties to FullFormatter.
- Documented packages using pint.
- Fixed bug causing operations between arrays of quantity scalars and quantity holding
array resulting in incorrect units.
- Fix LaTeX siuntix formatting when using non_int_type=decimal.Decimal.
- Added refractive index units.
- Fix converting to offset units of higher dimension e.g. gauge pressure
- Fix unhandled TypeError when auto_reduce_dimensions=True and non_int_type=Decimal
- Improved error message in 'get_dimensionality()' when non existent units are passed.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
- Handle unexpected hg repo when parse scm version
- Treat PDM_BUILD_SCM_VERSION empty string as unset
- Honor the current working directory when importing pdm_build.py
- Errors when using the editables backend with the includes field.
- Vendor editables
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelo:
==============
- #2189 Assigning named styles doesn't work
- #2190 Problems caused when saving workbooks created by LibreOffice
- Python 3.6 and 3.7 are no longer supported.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- More makework thanks to the ass-clowns running Python. Fix issue with deprecation of datetime.utcnow() in 3.12.
- Add API for customizing the TaskWrapper implementation, suitably named get_task_wrapper_class().
- Make the revoke_all(), restore_all() and is_revoked() more robust for various input types.
- Fix bug that could occur in the event of a SIGHUP followed by a SIGINT when using thread workers.
- Added new experimental contrib module for SQS queue and S3 result storage.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- Email addresses with internationalized local parts could, with rare Unicode
characters, be returned as valid but actually be invalid in their
normalized form (returned in the normalized field).
- The length check for email addresses with internationalized local parts is
now also applied to the original address string prior to Unicode NFC
normalization, which may be longer and could exceed the maximum email address
length, to protect callers who do not use the returned normalized address.
- Improved error message for IDNA domains that are too long or have invalid
characters after Unicode normalization.
- A new option to parse My Name <address@domain> strings
- Improvements to Python typing.
- Some additional tests added.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Fix potential XSS vulnerability in browsable API.
- Revert "Ensure CursorPagination respects nulls in the ordering field".
- Use warnings rather than logging a warning for DecimalField.
- Remove unused code.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- If you attempt to combine statement coverage data with branch coverage data,
coverage.py used to fail with the message "Can't combine arc data with line
data" or its reverse, "Can't combine line data with arc data." These messages
used internal terminology, making it hard for people to understand the problem.
They are now changed to mention "branch coverage data" and "statement coverage data."
- Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.
- Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
