4 Commits

Author	SHA1	Message	Date
Narpat Mali	848be11a43	python3-mako: backport fix for CVE-2022-40023 ... Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin. Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-40023 Reference to Upstream Patch: 925760291d (From OE-Core rev: 34727812b54fd52f85806f4f95702286d551b5fd) Signed-off-by: Narpat Mali <narpat.mali@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-11-20 08:19:17 +00:00
Ross Burton	e5ab3817aa	classes/setuptools_build_meta: rename to python_setuptools_build_meta ... Rename this class to be python-prefixed to match the other new Python build system classes. (From OE-Core rev: 25d6bf8079797906bde7c0cf63a0466c981ba5bb) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-03-20 00:02:22 +00:00
Tim Orling	d2189f178a	python3-mako: inherit setuptools_build_meta ... Upstream provides a pyproject.toml which declares the setuptools.build_meta backend for PEP-517 packaging. [YOCTO #14638] (From OE-Core rev: 5d591c6a498f2667f61147f30dc441856567825a) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-02-25 15:07:51 +00:00
wangmy	0e7d1889aa	python3-mako: upgrade 1.1.5 -> 1.1.6 ... Fixed issue where control statements on multi lines with a backslash would not parse correctly if the template itself contained CR/LF pairs as on Windows. (From OE-Core rev: 2fa42b223a9bdafd52a7feb335001ef0b5713af8) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2021-11-23 10:53:15 +00:00