MIRRORS/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-24 14:42:48 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
0aa5b9d824
meta-openembedded/meta-python/recipes-devtools
History
Gyorgy Sarvari 0aa5b9d824
python3-virtualenv: set CVE_PRODUCT 
There are relevant CVEs tracked under two different CPEs:
python:virtualenv (the default in OE), and virtualenv:virtualenv (these were missed).

See CVE db query:
sqlite> select * from products where PRODUCT = 'virtualenv';
CVE-2011-4617|python|virtualenv|||1.4.9|<=
CVE-2011-4617|python|virtualenv|0.8|=||
CVE-2011-4617|python|virtualenv|0.8.1|=||
CVE-2011-4617|python|virtualenv|0.8.2|=||
CVE-2011-4617|python|virtualenv|0.8.3|=||
CVE-2011-4617|python|virtualenv|0.8.4|=||
CVE-2011-4617|python|virtualenv|0.9|=||
CVE-2011-4617|python|virtualenv|0.9.1|=||
CVE-2011-4617|python|virtualenv|0.9.2|=||
CVE-2011-4617|python|virtualenv|1.0|=||
CVE-2011-4617|python|virtualenv|1.1|=||
CVE-2011-4617|python|virtualenv|1.1.1|=||
CVE-2011-4617|python|virtualenv|1.2|=||
CVE-2011-4617|python|virtualenv|1.3|=||
CVE-2011-4617|python|virtualenv|1.3.1|=||
CVE-2011-4617|python|virtualenv|1.3.2|=||
CVE-2011-4617|python|virtualenv|1.3.3|=||
CVE-2011-4617|python|virtualenv|1.3.4|=||
CVE-2011-4617|python|virtualenv|1.4|=||
CVE-2011-4617|python|virtualenv|1.4.1|=||
CVE-2011-4617|python|virtualenv|1.4.2|=||
CVE-2011-4617|python|virtualenv|1.4.3|=||
CVE-2011-4617|python|virtualenv|1.4.4|=||
CVE-2011-4617|python|virtualenv|1.4.5|=||
CVE-2011-4617|python|virtualenv|1.4.6|=||
CVE-2011-4617|python|virtualenv|1.4.7|=||
CVE-2011-4617|python|virtualenv|1.4.8|=||
CVE-2013-5123|virtualenv|virtualenv|12.0.7|=||
CVE-2024-53899|virtualenv|virtualenv|||20.26.6|<

Set the CVE_PRODUCT so both are matched.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2025-12-31 08:28:53 -08:00
..
gyp meta-openembedded/all: adapt to UNPACKDIR changes 2025-06-25 06:44:52 -07:00
python python3-virtualenv: set CVE_PRODUCT 2025-12-31 08:28:53 -08:00
python-jsonref python3-jsonref: use correct Python build backend class 2025-08-04 17:32:04 -07:00
python3-attrdict3
python3-breathe python3-breathe: fixed location + added nativesdk 2025-08-18 07:50:00 -07:00
python3-cairocffi python3-cairocffi: add new recipe 2025-02-18 19:23:49 -08:00
python3-exhale python3-exhale: fixed location + added nativesdk 2025-08-18 07:50:00 -07:00
python3-gspread python3-gspread: upgrade 6.2.0 -> 6.2.1 2025-05-21 07:39:38 -07:00
python3-mlcommons-loadgen python3-mlcommons-loadgen: upgrade 5.1.1 -> 5.1.2 2025-12-02 09:22:51 -08:00
python3-nltk python3-nltk: upgrade 3.9.1 -> 3.9.2 2025-10-14 09:00:23 -07:00
python3-piccata meta-openembedded/all: adapt to UNPACKDIR changes 2025-06-25 06:44:52 -07:00
python3-reedsolo python3-reedsolo: inherit cython class 2024-11-19 16:59:09 -08:00
python3-rouge-score python3-*: Update recipes to correctly check the upstream packages 2024-12-19 09:41:21 -08:00
python3-wxgtk4 python3-wxgtk4: Upgrade to 4.2.4 2025-11-26 19:07:03 -08:00
python3-zstandard python3-zstandard: upgrade 0.24.0 -> 0.25.0 2025-09-16 09:59:21 -07:00