mirror of
git://git.openembedded.org/meta-openembedded
synced 2026-05-16 22:27:14 +00:00
6e9eff155e
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68480
The vulnerability has been fixed in version 4.1.2[1], however
NVD tracks this CVE without version info. Mark it as patched explicitly.
[1]: d24a0c9df0
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
35 lines
1.1 KiB
BlitzBasic
35 lines
1.1 KiB
BlitzBasic
SUMMARY = "Simplified object serialization in python"
|
|
DESCRIPTION = "Marshmallow is an ORM/ODM/framework-agnostic library for converting complex datatypes, such as objects, to and from native Python datatypes."
|
|
HOMEPAGE = "https://github.com/marshmallow-code/marshmallow"
|
|
LICENSE = "MIT"
|
|
LIC_FILES_CHKSUM = "\
|
|
file://LICENSE;md5=27586b20700d7544c06933afe56f7df4 \
|
|
file://docs/license.rst;md5=13da439ad060419fb7cf364523017cfb"
|
|
|
|
SRC_URI[sha256sum] = "083f250643d2e75fd363f256aeb6b1af369a7513ad37647ce4a601f6966e3ba5"
|
|
|
|
inherit python_flit_core pypi ptest-python-pytest
|
|
|
|
RDEPENDS:${PN}-ptest += " \
|
|
python3-pytz \
|
|
python3-simplejson \
|
|
python3-zoneinfo \
|
|
python3-tzdata \
|
|
"
|
|
|
|
do_install_ptest:append () {
|
|
rm -rf ${D}${PTEST_PATH}/tests/mypy_test_cases
|
|
}
|
|
|
|
RDEPENDS:${PN} += " \
|
|
python3-compression \
|
|
python3-datetime \
|
|
python3-email \
|
|
python3-json \
|
|
python3-numbers \
|
|
python3-pprint \
|
|
python3-packaging \
|
|
"
|
|
|
|
CVE_STATUS[CVE-2025-68480] = "fixed-version: fixed in 4.1.2"
|