mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-06-14 05:49:57 +00:00
Haixiao Yan
151e634ed2
The methods QuerySet.filter(), QuerySet.exclude(), and QuerySet.get(), and the class Q() were subject to SQL injection when using a suitably crafted dictionary, with dictionary expansion, as the _connector argument. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-64459 https://shivasurya.me/security/django/2025/11/07/django-sql-injection-CVE-2025-64459.html Upstream-patch: https://github.com/django/django/commit/72d2c87431f2ae0431d65d0ec792047f078c8241 https://github.com/django/django/commit/4624ed769c0f7caea0d48ac824a75fa6b6f17671 Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com> Signed-off-by: Jinfeng Wang <jinfeng.wang.cn@windriver.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
meta-python
Introduction
This layer is intended to be the home of python modules for OpenEmbedded.
Dependencies
The meta-python layer depends on:
URI: git://git.openembedded.org/openembedded-core
layers: meta
branch: scarthgap
URI: git://git.openembedded.org/meta-openembedded
layers: meta-oe
branch: scarthgap
Contributing
The meta-openembedded mailinglist (openembedded-devel@lists.openembedded.org) is used for questions, comments and patch review. It is subscriber only, so please register before posting.
Send pull requests to openembedded-devel@lists.openembedded.org with '[meta-python][scarthgap]' in the subject.
When sending single patches, please use something like: git send-email -M -1 --to=openembedded-devel@lists.openembedded.org --subject-prefix='meta-python][scarthgap][PATCH'
Maintenance
Layer maintainers: Anuj Mittal anuj.mittal@oss.qualcomm.com