mirrors/poky - poky - zepto initiative

mirrors/poky

Fork 0

mirror of https://git.yoctoproject.org/poky synced 2026-03-26 13:02:22 +01:00

Commit Graph

Author	SHA1	Message	Date
Vijay Anusuri	49bfa3f8e0	python3-pip: Fix CVE-2026-1703 Pick patch according to [1] [1] https://security-tracker.debian.org/tracker/CVE-2026-1703 [2] https://nvd.nist.gov/vuln/detail/CVE-2026-1703 [3] https://github.com/pypa/pip/pull/13777 (From OE-Core rev: 29c72a4729a42f75af47b6a7e04c9d52155e3c1f) Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Paul Barker <paul@pbarker.dev>	2026-03-25 17:34:13 +00:00
Wang Mingyu	f398ed7a3f	python3-pip: upgrade 23.3.2 -> 24.0 no_shebang_mangling.patch refreshed for 24.0 Changelog: =========== -Retry on HTTP status code 502 -Automatically use the setuptools PEP 517 build backend when --config-settings is used for projects without pyproject.toml. -Make pip freeze and pip uninstall of legacy editable installs of packages whose name contains _ compatible with setuptools>=69.0.3. -Support per requirement --config-settings for editable installs. (From OE-Core rev: 73040d2ed2a440d7497b448b8e81ee19bef5858b) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2024-03-01 09:28:51 +00:00

Author

SHA1

Message

Date

Vijay Anusuri

49bfa3f8e0

python3-pip: Fix CVE-2026-1703

Pick patch according to [1]

[1] https://security-tracker.debian.org/tracker/CVE-2026-1703
[2] https://nvd.nist.gov/vuln/detail/CVE-2026-1703
[3] https://github.com/pypa/pip/pull/13777

(From OE-Core rev: 29c72a4729a42f75af47b6a7e04c9d52155e3c1f)

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>

2026-03-25 17:34:13 +00:00

Wang Mingyu

f398ed7a3f

python3-pip: upgrade 23.3.2 -> 24.0

no_shebang_mangling.patch
refreshed for 24.0

Changelog:
===========
-Retry on HTTP status code 502
-Automatically use the setuptools PEP 517 build backend when --config-settings
 is used for projects without pyproject.toml.
-Make pip freeze and pip uninstall of legacy editable installs of packages
 whose name contains _ compatible with setuptools>=69.0.3.
-Support per requirement --config-settings for editable installs.

(From OE-Core rev: 73040d2ed2a440d7497b448b8e81ee19bef5858b)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2024-03-01 09:28:51 +00:00

2 Commits