mirror of
git://git.openembedded.org/meta-openembedded
synced 2026-04-02 10:59:19 +00:00
363dc629d4
Details: https://nvd.nist.gov/vuln/detail/CVE-2012-5825 The Debian bugtracker[1] indicated that the issue is tracked by upstream in github[2] (with a difference CVE ID, but same issue), where the vulnerability was confirmed. Later in the same github issue the solution is confirmed: the project switched to use the requests library, which doesn't suffer from this vulnerability. Due to this mark the CVE as patched. [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692444 [2]: https://github.com/tweepy/tweepy/issues/279 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 3ee544e7591b36a49550a263a0ec4d64b5e490e8) Adapted to Kirkstone (CVE_STATUS -> CVE_CHECK_IGNORE) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
22 lines
562 B
BlitzBasic
22 lines
562 B
BlitzBasic
SUMMARY = "Twitter for Python"
|
|
DESCRIPTION = "Python module to support twitter API"
|
|
|
|
LICENSE = "MIT"
|
|
LIC_FILES_CHKSUM = "file://PKG-INFO;beginline=8;endline=8;md5=8227180126797a0148f94f483f3e1489"
|
|
|
|
SRC_URI[sha256sum] = "8ba5774ac1663b09e5fce1b030daf076f2c9b3ddbf2e7e7ea0bae762e3b1fe3e"
|
|
|
|
PYPI_PACKAGE = "tweepy"
|
|
|
|
inherit pypi setuptools3
|
|
|
|
RDEPENDS:${PN} += "\
|
|
${PYTHON_PN}-pip \
|
|
${PYTHON_PN}-pysocks \
|
|
${PYTHON_PN}-requests \
|
|
${PYTHON_PN}-six \
|
|
"
|
|
|
|
# fixed-version: The vulnerability has been fixed since v3.1.0
|
|
CVE_CHECK_IGNORE += "CVE-2012-5825"
|