mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-30 00:52:39 +02:00
Code Issues Packages Projects Releases Wiki Activity

python3-wheel: fix CVE-2026-24049

Browse Source 
Backport patch to fix CVE-2026-24049 per reference [1] [2].

[1] https://security-tracker.debian.org/tracker/CVE-2026-24049
[2] https://github.com/pypa/wheel/commit/7a7d2de96b

(From OE-Core rev: aa7465ce6a3d82629abeaa9b6d199b465b449d43)

Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
This commit is contained in:
Guocai He
2026-04-09 14:16:33 +08:00
committed by Paul Barker
parent 60345ecc4b
commit c18ab4d895
2 changed files with 75 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
meta/recipes-devtools/python/python3-wheel_0.42.0.bb
View File

@@ -8,6 +8,8 @@ SRC_URI[sha256sum] = "c45be39f7882c9d34243236f2d63cbd58039e360f85d0913425fbd7cee
inherit python_flit_core pypi
SRC_URI += "file://CVE-2026-24049.patch"
BBCLASSEXTEND = "native nativesdk"
# This used to use the bootstrap install which didn't compile. Until we bump the