mirror of
git://git.openembedded.org/meta-openembedded
synced 2026-01-01 13:58:06 +00:00
aef354a0c2
In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8,
MultiPartParser allowed directory traversal via uploaded files with
suitably crafted file names. Built-in upload handlers were not affected
by this vulnerability.
References:
https://nvd.nist.gov/vuln/detail/CVE-2021-28658
Upstream patches:
|
||
|---|---|---|
| .. | ||
| classes | ||
| conf | ||
| licenses | ||
| recipes-connectivity | ||
| recipes-core | ||
| recipes-devtools | ||
| recipes-extended | ||
| COPYING.MIT | ||
| README | ||
meta-python
================================
Introduction
-------------------------
This layer is intended to be the home of python modules for OpenEmbedded.
Dependencies
-------------------------
The meta-python layer depends on:
URI: git://git.openembedded.org/openembedded-core
layers: meta
branch: hardknott
revision: HEAD
URI: git://git.openembedded.org/meta-openembedded
layers: meta-oe
branch: hardknott
revision: HEAD
Please follow the recommended setup procedures of your OE distribution.
For Angstrom that is:
http://www.angstrom-distribution.org/building-angstrom,
other distros should have similar online resources.
Contributing
-------------------------
The meta-openembedded mailinglist
(openembedded-devel@lists.openembedded.org) is used for questions,
comments and patch review. It is subscriber only, so please register
before posting.
Send pull requests to openembedded-devel@lists.openembedded.org with
'[meta-python][hardknott]' in the subject.
When sending single patches, please use something like:
'git send-email -M -1 --to=openembedded-devel@lists.openembedded.org --subject-prefix=meta-python][hardknott][PATCH'
Maintenance
-------------------------
hardknott Maintainers: Armin Kuster <akuster808@gmail.com>