]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: e458c15) | patch
python3-pip: fix CVE-2021-3572
authorTrevor Gamblin <trevor.gamblin@windriver.com>
Thu, 22 Jul 2021 20:43:29 +0000 (16:43 -0400)
committerAnuj Mittal <anuj.mittal@intel.com>
Sat, 31 Jul 2021 06:10:45 +0000 (14:10 +0800)
commitfb7a2af241795b82f121381cea6f4b56ce948ebf
tree4dd9edbedf6f4cd2a3782a5b516ddd5e624bf1f6tree | snapshot
parente458c15627e7b27392d158cbb9417f66424aa7d5commit | diff
python3-pip: fix CVE-2021-3572

Backport the body of a fix for CVE-2021-3572 since hardknott carries
20.0.2, and the delta between it and the latest 21.1.3 is more than just
bugfixes.

CVE: CVE-2021-3572

Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
meta/recipes-devtools/python/python3-pip/0001-Don-t-split-git-references-on-unicode-separators.patch [new file with mode: 0644] blob
meta/recipes-devtools/python/python3-pip_20.0.2.bb diff | blob | history
Mirror of the official openembedded-core repository