meta-openembedded

mirrors/meta-openembedded

Fork 0

mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-01-16 16:51:33 +00:00

Commit Graph

Author SHA1 Message Date

Author	SHA1	Message	Date
Yue Tao	cb4e7fb4b0	python3-lxml: Security fix CVE-2022-2309 CVE-2022-0934: lxml: NULL Pointer Dereference in lxml Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-2309 Patch from: `86368e9cf7` Signed-off-by: Yue Tao <Yue.Tao@windriver.com>	2022-07-26 07:08:35 -07:00
Wang Mingyu	0cf785935d	python3-lxml: upgrade 4.7.1 -> 4.8.0 0001-setupinfo.py-check-the-return-value.patch removed since it's included in 4.8.0. Changelog: ========= Features added -------------- * GH#337: Path-like objects are now supported throughout the API instead of just strings. Patch by Henning Janssen. * The ''ElementMaker'' now supports ''QName'' values as tags, which always override the default namespace of the factory. Bugs fixed ---------- * GH#338: In lxml.objectify, the XSI float annotation "nan" and "inf" were spelled in lower case, whereas XML Schema datatypes define them as "NaN" and "INF" respectively. Patch by Tobias Deiminger. Other changes ------------- * Built with Cython 0.29.28. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>	2022-03-09 07:37:04 -08:00

Yue Tao

cb4e7fb4b0

python3-lxml: Security fix CVE-2022-2309

CVE-2022-0934:
lxml: NULL Pointer Dereference in lxml

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-2309

Patch from:
86368e9cf7

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>

2022-07-26 07:08:35 -07:00

Wang Mingyu

0cf785935d

python3-lxml: upgrade 4.7.1 -> 4.8.0

0001-setupinfo.py-check-the-return-value.patch
removed since it's included in 4.8.0.

Changelog:
=========
Features added
--------------

* GH#337: Path-like objects are now supported throughout the API instead of just strings.
  Patch by Henning Janssen.

* The ''ElementMaker'' now supports ''QName'' values as tags, which always override
  the default namespace of the factory.

Bugs fixed
----------

* GH#338: In lxml.objectify, the XSI float annotation "nan" and "inf" were spelled in
  lower case, whereas XML Schema datatypes define them as "NaN" and "INF" respectively.
  Patch by Tobias Deiminger.

Other changes
-------------

* Built with Cython 0.29.28.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>

2022-03-09 07:37:04 -08:00

2 Commits