Praveen Kumar c6234dce63 python3: fix CVE-2025-6075 ... If the value passed to os.path.expandvars() is user-controlled a performance degradation is possible when expanding environment variables. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-6075 Upstream-patch: 892747b4cf (From OE-Core rev: 9a7f33d85355ffbe382aa175c04c64541e77b441) Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>		2025-12-01 06:50:49 -08:00
..
classes	goarch.bbclass: do not leak TUNE_FEATURES into crosssdk task signatures	2025-11-19 08:21:24 -08:00
conf	conf/bitbake.conf: use gnu mirror instead of main server	2025-10-14 07:20:36 -07:00
files	meta: Enable '-o pipefail' for the SDK installer	2025-03-04 08:46:02 -08:00
lib	oeqa/sdk/cases/buildcpio.py: use gnu mirror instead of main server	2025-10-14 07:20:36 -07:00
recipes-bsp	efibootmgr: update SRC_URI branch	2025-11-19 08:21:24 -08:00
recipes-connectivity	bind: upgrade 9.18.33 -> 9.18.41	2025-11-06 07:14:05 -08:00
recipes-core	musl: patch CVE-2025-26519	2025-11-24 06:57:39 -08:00
recipes-devtools	python3: fix CVE-2025-6075	2025-12-01 06:50:49 -08:00
recipes-example/rust-hello-world	rustfmt: remove the recipe	2021-12-08 20:22:11 +00:00
recipes-extended	ghostscript: patch CVE-2025-59800	2025-10-14 07:20:35 -07:00
recipes-gnome	Don't use ftp.gnome.org	2025-11-06 07:14:05 -08:00
recipes-graphics	xwayland: Fix for CVE-2025-62231	2025-11-24 06:57:39 -08:00
recipes-kernel	babeltrace2: fetch with https protocol	2025-11-19 08:21:24 -08:00
recipes-multimedia	ffmpeg: mark CVE-2023-6601 as patched	2025-10-14 07:20:36 -07:00
recipes-rt	meta/recipes: python 3.12 regex	2024-03-01 05:19:54 -10:00
recipes-sato	puzzles: ignore three new CVEs for a different puzzles	2025-03-19 07:13:17 -07:00
recipes-support	curl: ignore CVE-2025-10966	2025-11-19 08:21:24 -08:00
site	ppc/siteinfo: Fix differences between musl and glibc	2022-03-15 08:40:09 +00:00
COPYING.MIT
recipes.txt