CaROS/poky
3
1
Fork 0
mirror of https://git.yoctoproject.org/git/poky synced 2026-01-01 13:58:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
7b97d35dea
poky/meta/recipes-devtools/python/python3-setuptools
History
Narpat Mali 92b150b9f3 python3-setuptools: fix for CVE-2022-40897 
Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers
to cause a denial of service via HTML in a crafted package or custom PackageIndex
page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.

CVE: CVE-2022-40897

Upstream-Status: Backport [43a9c9bfa6]

(From OE-Core rev: f574d8d57ff3fbc38e350e7a90913993081c4fdf)

Signed-off-by: Narpat Mali <narpat.mali@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2023-01-26 23:37:05 +00:00
..
0001-_distutils-sysconfig-append-STAGING_LIBDIR-python-sy.patch
0001-change-shebang-to-python3.patch
0001-Limit-the-amount-of-whitespace-to-search-backtrack.-.patch python3-setuptools: fix for CVE-2022-40897 2023-01-26 23:37:05 +00:00