CaROS/meta-openembedded
3
1
Fork 0
mirror of git://git.openembedded.org/meta-openembedded synced 2026-01-01 13:58:06 +00:00
Code Issues Packages Projects Releases Wiki Activity
6f2ce3843e
meta-openembedded/meta-python
History
Gyorgy Sarvari 6f2ce3843e
python3-werkzeug: set CVE_PRODUCT 
The relevant CVEs are tracked using palletsprojects:werkzeug CPE, which makes
the the default python:werkzeug CPE to not match anything.

See CVE db query:
sqlite> select * from products where PRODUCT like 'werkzeug';
CVE-2016-10516|palletsprojects|werkzeug|||0.11.11|<
CVE-2019-14322|palletsprojects|werkzeug|||0.15.5|<
CVE-2019-14806|palletsprojects|werkzeug|||0.15.3|<
CVE-2020-28724|palletsprojects|werkzeug|||0.11.6|<
CVE-2022-29361|palletsprojects|werkzeug|||2.1.0|<=
CVE-2023-23934|palletsprojects|werkzeug|||2.2.3|<
CVE-2023-25577|palletsprojects|werkzeug|||2.2.3|<
CVE-2023-46136|palletsprojects|werkzeug|||2.3.8|<
CVE-2023-46136|palletsprojects|werkzeug|3.0.0|=||
CVE-2024-34069|palletsprojects|werkzeug|||3.0.3|<
CVE-2024-49766|palletsprojects|werkzeug|||3.0.6|<
CVE-2024-49767|palletsprojects|werkzeug|||3.0.6|<
CVE-2025-66221|palletsprojects|werkzeug|||3.1.4|<

Set the CVE_PRODUCT so it matches the relevant entries.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2025-12-31 08:28:54 -08:00
..
classes
conf python3-pyzstd: Delete recipe 2025-12-24 13:18:25 -08:00
licenses
recipes-connectivity python3-pyro5: add recipe 2025-12-20 11:41:02 -08:00
recipes-core python3-pyro5: add recipe 2025-12-20 11:41:02 -08:00
recipes-devtools python3-werkzeug: set CVE_PRODUCT 2025-12-31 08:28:54 -08:00
recipes-extended python3-pywbem: set CVE_PRODUCT 2025-12-31 08:28:53 -08:00
recipes-networking/python python3-ldap: set CVE_PRODUCT 2025-12-31 08:28:53 -08:00
COPYING.MIT
README.md
SECURITY.md

README.md

meta-python

Introduction

This layer is intended to be the home of python modules for OpenEmbedded.

Dependencies

The meta-python layer depends on:

URI: git://git.openembedded.org/openembedded-core
layers: meta
branch: master

URI: git://git.openembedded.org/meta-openembedded
layers: meta-oe
branch: master

Contributing

The meta-openembedded mailinglist (openembedded-devel@lists.openembedded.org) is used for questions, comments and patch review. It is subscriber only, so please register before posting.

Send pull requests to openembedded-devel@lists.openembedded.org with '[meta-python]' in the subject.

When sending single patches, please use something like: git send-email -M -1 --to=openembedded-devel@lists.openembedded.org --subject-prefix='meta-python][PATCH'

Maintenance

Layer maintainers: Tim "moto-timo" Orling TicoTimo@gmail.com Derek Straka derek@asterius.io