From 8906fbe1719b18adbba7f445e5c24d5eb30d11a0 Mon Sep 17 00:00:00 2001 From: zangrc Date: Sat, 25 Sep 2021 04:25:11 +0800 Subject: [PATCH] python3-sqlparse: upgrade 0.4.1 -> 0.4.2 Release 0.4.2 (Sep 10, 2021) ---------------------------- Notable Changes * IMPORTANT: This release fixes a security vulnerability in the strip comments filter. In this filter a regular expression that was vulnerable to ReDOS (Regular Expression Denial of Service) was used. See the security advisory for details: https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-p5w8-wqhj-9hhf The vulnerability was discovered by @erik-krogh and @yoff from GitHub Security Lab (GHSL). Thanks for reporting! Enhancements * Add ELSIF as keyword (issue584). * Add CONFLICT and ON_ERROR_STOP keywords (pr595, by j-martin). Bug Fixes * Fix parsing of backticks (issue588). * Fix parsing of scientific number (issue399). Signed-off-by: Zang Ruochen Signed-off-by: Khem Raj Signed-off-by: Trevor Gamblin --- .../{python3-sqlparse_0.4.1.bb => python3-sqlparse_0.4.2.bb} | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) rename meta-python/recipes-devtools/python/{python3-sqlparse_0.4.1.bb => python3-sqlparse_0.4.2.bb} (81%) diff --git a/meta-python/recipes-devtools/python/python3-sqlparse_0.4.1.bb b/meta-python/recipes-devtools/python/python3-sqlparse_0.4.2.bb similarity index 81% rename from meta-python/recipes-devtools/python/python3-sqlparse_0.4.1.bb rename to meta-python/recipes-devtools/python/python3-sqlparse_0.4.2.bb index 3565da7d13..0980ff9c24 100644 --- a/meta-python/recipes-devtools/python/python3-sqlparse_0.4.1.bb +++ b/meta-python/recipes-devtools/python/python3-sqlparse_0.4.2.bb @@ -8,8 +8,7 @@ SRC_URI += "file://0001-sqlparse-change-shebang-to-python3.patch \ file://run-ptest \ " -SRC_URI[md5sum] = "eebbc6b5f1033054873033e54b0c1266" -SRC_URI[sha256sum] = "0f91fd2e829c44362cbcfab3e9ae12e22badaa8a29ad5ff599f9ec109f0454e8" +SRC_URI[sha256sum] = "0c00730c74263a94e5a9919ade150dfc3b19c574389985446148402998287dae" export BUILD_SYS export HOST_SYS