mirror of
git://git.openembedded.org/meta-openembedded
synced 2026-01-01 13:58:06 +00:00
55f71e0a18
Optimize _encode_invalid_chars for a denial of service (CPU consumption) CVE: CVE-2020-7212 Signed-off-by: Haiqing Bai <Haiqing.Bai@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Harpritkaur Bhandari <Harpritkaur.Bhandari@kpit.com> [Add CVE: CVE-2020-7212 to the patch itself] Signed-off-by: Armin Kuster <akuster808@gmail.com>
26 lines
743 B
BlitzBasic
26 lines
743 B
BlitzBasic
SUMMARY = "Python HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more"
|
|
HOMEPAGE = "https://github.com/shazow/urllib3"
|
|
LICENSE = "MIT"
|
|
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=65715c2eb961313d71b297dd5a04f85e"
|
|
|
|
SRC_URI[md5sum] = "85e1e3925f8c1095172bff343f3312ed"
|
|
SRC_URI[sha256sum] = "f3c5fd51747d450d4dcf6f923c81f78f811aab8205fda64b0aba34a4e48b0745"
|
|
|
|
inherit pypi setuptools3
|
|
|
|
SRC_URI += "file://CVE-2020-7212.patch"
|
|
|
|
RDEPENDS_${PN} += "\
|
|
${PYTHON_PN}-certifi \
|
|
${PYTHON_PN}-cryptography \
|
|
${PYTHON_PN}-email \
|
|
${PYTHON_PN}-idna \
|
|
${PYTHON_PN}-netclient \
|
|
${PYTHON_PN}-pyopenssl \
|
|
${PYTHON_PN}-threading \
|
|
"
|
|
|
|
CVE_PRODUCT = "urllib3"
|
|
|
|
BBCLASSEXTEND = "native nativesdk"
|