mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-01-13 03:41:43 +00:00
Code Issues Projects Releases Wiki Activity
23,541 Commits 63 Branches 0 Tags
4e8fa78778944fa005ee94a7346a4d0d9e2c7405
Commit Graph

5 Commits

Author SHA1 Message Date
Yue Tao
cb4e7fb4b0 python3-lxml: Security fix CVE-2022-2309 
CVE-2022-0934:
lxml: NULL Pointer Dereference in lxml

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-2309

Patch from:
86368e9cf7

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
 2022-07-26 07:08:35 -07:00
Wang Mingyu
0cf785935d python3-lxml: upgrade 4.7.1 -> 4.8.0 
0001-setupinfo.py-check-the-return-value.patch
removed since it's included in 4.8.0.

Changelog:
=========
Features added
--------------

* GH#337: Path-like objects are now supported throughout the API instead of just strings.
  Patch by Henning Janssen.

* The ''ElementMaker'' now supports ''QName'' values as tags, which always override
  the default namespace of the factory.

Bugs fixed
----------

* GH#338: In lxml.objectify, the XSI float annotation "nan" and "inf" were spelled in
  lower case, whereas XML Schema datatypes define them as "NaN" and "INF" respectively.
  Patch by Tobias Deiminger.

Other changes
-------------

* Built with Cython 0.29.28.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
 2022-03-09 07:37:04 -08:00
Mingli Yu
334932fffc python3-lxml: check the return value 
Check the return value in subprocess to guarantee the subprocess
execute successfully or not as after [1] introduced to limit the
netowork, there some difference during do_compile phase as below.
Before the change
 # python
 Python 3.8.10 (default, Nov 26 2021, 20:14:08)
 [GCC 9.3.0] on linux
 Type "help", "copyright", "credits" or "license" for more information.
 >>> import subprocess
 >>> cmd = "pkg-config --modversion libxml-2.0"
 >>> p = subprocess.Popen(cmd, shell=True,stdout=subprocess.PIPE, stderr=subprocess.PIPE)
 >>> stdout_data, errors = p.communicate()
 >>> print(stdout_data)
 b'2.9.12\n'
 >>> print(errors)
 b''
 >>>

After the change
 # python
 Python 3.8.10 (default, Nov 26 2021, 20:14:08)
 [GCC 9.3.0] on linux
 Type "help", "copyright", "credits" or "license" for more information.
 >>> import subprocess
 >>> cmd = "pkg-config --modversion libxml-2.0"
 >>> p = subprocess.Popen(cmd, shell=True,stdout=subprocess.PIPE, stderr=subprocess.PIPE)
 >>> stdout_data, errors = p.communicate()
 >>> print(stdout_data)
 b'2.9.12\n'
 >>> print(errors)
 b'do_ypcall: clnt_call: RPC: Unable to send; errno = Network is unreachable\n'
 >>>

[1] https://git.openembedded.org/bitbake/commit/?id=0746b6a2a32fec4c18bf1a52b1454ca4c04bf543

Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
 2022-01-21 08:23:59 -08:00
Derek Straka
8d96e46f7c python-lxml: update to version 4.0.0 
remove obsolete patch

Signed-off-by: Derek Straka <derek@asterius.io>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
 2017-09-22 22:50:44 +00:00
Khem Raj
07bbd665e6 python-lxml,python3-lxml: Fix libxslt format warnings 
Found with clang

Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2017-04-24 11:00:54 +02:00