mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 17:59:59 +00:00
Code Issues Projects Releases Wiki Activity

python3-cbor2: patch CVE-2025-68131

Browse Source 
Backport the patch[1] which fixes this vulnerability as mentioned in the
comment[2].
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68131

[1] https://github.com/agronholm/cbor2/commit/f1d701cd2c411ee40bb1fe383afe7f365f35abf0
[2] https://github.com/agronholm/cbor2/pull/268#issuecomment-3719179000

Dropped changes to the changelog from the original commit.

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
This commit is contained in:
Hitendra Prajapati
2026-02-26 18:06:45 +05:30
committed by Gyorgy Sarvari
parent d9010e70c4
commit f19f8995e2
2 changed files with 508 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-python/recipes-devtools/python/python3-cbor2_5.4.2.bb
+1
View File
@@ -10,6 +10,7 @@ inherit pypi python_setuptools_build_meta ptest
SRC_URI += " \
file://run-ptest \
file://CVE-2025-68131.patch \
"
# not vulnerable yet, vulnerability was introduced in v5.6.0