meta-openembedded

mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-18 07:10:32 +00:00

Author	SHA1	Message	Date
Gyorgy Sarvari	3fd10def49	python3-ecdsa: set CVE_PRODUCT Set the correct CVE_PRODUCT value, the default python: ecdsa doesn't match relevant entries. The correct values were taken from the CVE db, by checking which CVEs are relevant. See CVE db query: sqlite> select * from products where product like '%ecdsa%'; CVE-2019-14853\|python-ecdsa_project\|python-ecdsa\|\|\|0.13.3\|< CVE-2019-14859\|python-ecdsa_project\|python-ecdsa\|\|\|0.13.3\|< CVE-2020-12607\|antonkueltz\|fastecdsa\|\|\|2.1.2\|< CVE-2021-43568\|starkbank\|elixir_ecdsa\|1.0.0\|=\|\| CVE-2021-43569\|starkbank\|ecdsa-dotnet\|1.3.2\|=\|\| CVE-2021-43570\|starkbank\|ecdsa-java\|1.0.0\|=\|\| CVE-2021-43571\|starkbank\|ecdsa-node\|1.1.2\|=\|\| CVE-2021-43572\|starkbank\|ecdsa-python\|\|\|2.0.1\|< CVE-2022-24884\|ecdsautils_project\|ecdsautils\|\|\|0.4.1\|< CVE-2024-21502\|antonkueltz\|fastecdsa\|\|\|2.3.2\|< CVE-2024-23342\|tlsfuzzer\|ecdsa\|\|\|0.18.0\|<= Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit `7f962ef155`) Signed-off-by: Himanshu Jadon <hjadon@cisco.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-05-21 08:57:42 +05:30
Ankur Tyagi	8ce4b233c6	python3-ecdsa: fix CVE-2026-33936 Details: https://nvd.nist.gov/vuln/detail/CVE-2026-33936 Ptests passed: root@qemux86:~# ptest-runner python3-ecdsa START: ptest-runner 2026-04-11T08:04 BEGIN: /usr/lib/python3-ecdsa/ptest ... ... Testsuite summary # TOTAL: 1978 # PASS: 1974 # SKIP: 4 # XFAIL: 0 # FAIL: 0 # XPASS: 0 # ERROR: 0 DURATION: 386 END: /usr/lib/python3-ecdsa/ptest 2026-04-11T08:10 STOP: ptest-runner TOTAL: 1 FAIL: 0 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-04-15 14:12:18 +05:30
alperak	00266f5425	python3-ecdsa: enable ptest and add missing runtime dependency * Ptest and library example tested on qemux86-64 and qemuarm64 * Add ptest into PTESTS_SLOW_META_PYTHON Ptest result: ============= qemux86-64: Testsuite summary TOTAL: 1976 PASS: 1972 SKIP: 4 XFAIL: 0 FAIL: 0 XPASS: 0 ERROR: 0 DURATION: 292 END: /usr/lib/python3-ecdsa/ptest 2024-04-12T09:18 STOP: ptest-runner TOTAL: 1 FAIL: 0 qemuarm64: Testsuite summary TOTAL: 1976 PASS: 1972 SKIP: 4 XFAIL: 0 FAIL: 0 XPASS: 0 ERROR: 0 DURATION: 236 END: /usr/lib/python3-ecdsa/ptest 2024-04-12T09:05 STOP: ptest-runner TOTAL: 1 FAIL: 0 Signed-off-by: alperak <alperyasinak1@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-04-14 08:38:42 -07:00
Guðni Már Gilbert	dd9a78ac91	python3-ecdsa: upgrade 0.18.0 -> 0.19.0 Changelog: ========== New API: ------------ to_ssh in VerifyingKey and SigningKey, supports Ed25519 keys only (Pablo Mazzini) New features: ------------ Support for twisted Brainpool curves Doc fix: ------------ Fix curve equation in glossary Documentation for signature encoding and signature decoding functions Maintenance: ------------ Dropped official support for 3.3 and 3.4 (because of problems running them in CI, not because it's actually incompatible; support for 2.6 and 2.7 is unaffected) Fixes around hypothesis parameters Officially support Python 3.11 and 3.12 Small updates to test suite to make it work with 3.11 and 3.12 and new releases of test dependencies Dropped the internal _rwlock module as it's unused Added mutation testing to CI, lots of speed-ups to the test suite to make it happen Removal of unnecessary six.b literals (Alexandre Detiste) Deprecations: ------------ int_to_string, string_to_int, and digest_integer from ecdsa.ecdsa module are now considered deprecated, they will be removed in a future release Signed-off-by: Guðni Már Gilbert <gudnimar@noxmedical.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-04-14 08:38:40 -07:00

4 Commits