mirrors/poky - poky - zepto initiative

mirrors/poky

Fork 0

mirror of https://git.yoctoproject.org/poky synced 2026-02-06 16:56:37 +01:00

Commit Graph

Author	SHA1	Message	Date
Adrian Bunk	b67ede4d82	python/python3: Whitelist CVE-2019-18348 This is not exploitable when glibc has CVE-2016-10739 fixed, which is fixed in the upstream version since warrior. (From OE-Core rev: a26ac2921a1ad96959364223920402082ccd1d61) Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2019-12-31 10:37:23 +00:00
Adrian Bunk	f2c963a930	python3: Upgrade 3.7.4 -> 3.7.5 Backported patch removed. 3.7.5 also includes the fix for CVE-2019-16935. (From OE-Core rev: efc4236112d599a3a39376f5a5898072061efc8d) Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2019-11-13 22:02:15 +00:00

Author

SHA1

Message

Date

Adrian Bunk

b67ede4d82

python/python3: Whitelist CVE-2019-18348

This is not exploitable when glibc has CVE-2016-10739 fixed,
which is fixed in the upstream version since warrior.

(From OE-Core rev: a26ac2921a1ad96959364223920402082ccd1d61)

Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2019-12-31 10:37:23 +00:00

Adrian Bunk

f2c963a930

python3: Upgrade 3.7.4 -> 3.7.5

Backported patch removed.

3.7.5 also includes the fix for CVE-2019-16935.

(From OE-Core rev: efc4236112d599a3a39376f5a5898072061efc8d)

Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2019-11-13 22:02:15 +00:00

2 Commits