mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-02-03 22:50:33 +00:00
f88706fe2f
A vulnerability in corydolphin/flask-cors version 4.0.1 allows the
`Access-Control-Allow-Private-Network` CORS header to be set to true
by default, without any configuration option. This behavior can expose
private network resources to unauthorized external access, leading to
significant security risks such as data breaches, unauthorized access
to sensitive information, and potential network intrusions.
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-6221
Upsteam-Patch:
7ae310c56a
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta-python
Introduction
This layer is intended to be the home of python modules for OpenEmbedded.
Dependencies
The meta-python layer depends on:
URI: git://git.openembedded.org/openembedded-core
layers: meta
branch: scarthgap
URI: git://git.openembedded.org/meta-openembedded
layers: meta-oe
branch: scarthgap
Contributing
The meta-openembedded mailinglist (openembedded-devel@lists.openembedded.org) is used for questions, comments and patch review. It is subscriber only, so please register before posting.
Send pull requests to openembedded-devel@lists.openembedded.org with '[meta-python][scarthgap]' in the subject.
When sending single patches, please use something like: git send-email -M -1 --to=openembedded-devel@lists.openembedded.org --subject-prefix='meta-python][scarthgap][PATCH'
Maintenance
Layer maintainers: Armin Kuster akuster808@gmail.com