[OE-core] [PATCH 0/2] python: fix two CVEs
Chen Qi
Qi.Chen at windriver.com
Fri Oct 19 02:43:13 UTC 2018
The following changes since commit 7e8056d96ebe85d72bc4cb961e5766968db2ece2:
systemtap: Fix typo in chown command (2018-10-17 13:41:12 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib ChenQi/python-cve
http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=ChenQi/python-cve
Chen Qi (2):
python: backport patch to fix CVE-2018-1000802
python: backport patch to fix CVE-2018-14647
...23-Use-XML_SetHashSalt-in-_elementtree-GH.patch | 98 ++++++++++++++++++++++
...34540-Convert-shutil._call_external_zip-t.patch | 69 +++++++++++++++
meta/recipes-devtools/python/python_2.7.15.bb | 2 +
3 files changed, 169 insertions(+)
create mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34623-Use-XML_SetHashSalt-in-_elementtree-GH.patch
create mode 100644 meta/recipes-devtools/python/python/0001-closes-bpo-34540-Convert-shutil._call_external_zip-t.patch
--
1.9.1
More information about the Openembedded-core
mailing list