meta-openembedded

helium-3rd-party/meta-openembedded

Fork 0

mirror of git://git.openembedded.org/meta-openembedded synced 2026-04-15 12:30:00 +00:00

Commit Graph

Author	SHA1	Message	Date
Gyorgy Sarvari	891e25f9bf	python3-cbor2: patch CVE-2025-68131 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68131 The NVD report mentions a PR as the solution, however in the discussion of that PR it turned out that this is incorrect, and another patch is the solution. That patch was picked. Ptests passed successfully. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:16 +05:30
Wang Mingyu	64b87fbe6c	python3-cbor2: upgrade 5.7.0 -> 5.7.1 Changelog: =========== - Improved performance on decoding large definite bytestrings - Fixed a read(-1) vulnerability caused by boundary handling error Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00

Author

SHA1

Message

Date

Gyorgy Sarvari

891e25f9bf

python3-cbor2: patch CVE-2025-68131

Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68131

The NVD report mentions a PR as the solution, however
in the discussion of that PR it turned out that this
is incorrect, and another patch is the solution. That
patch was picked.

Ptests passed successfully.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>

2026-02-19 08:20:16 +05:30

Wang Mingyu

64b87fbe6c

python3-cbor2: upgrade 5.7.0 -> 5.7.1

Changelog:
===========
- Improved performance on decoding large definite bytestrings
- Fixed a read(-1) vulnerability caused by boundary handling error

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>

2025-10-29 10:14:13 -07:00

2 Commits