python3-sqlparse: Fix CVE-2024-4340 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Soumya Sambu <soumya.sambu@windriver.com>	2025-01-20 04:32:33 +0000
committer	Armin Kuster <akuster808@gmail.com>	2025-01-22 19:29:37 -0500
commit	de8681b4a2a101b99dd2c48d89a7de2ccd9a961f (patch)
tree	b640224346a887e1cd28c7e2b260b034bf9bcce6 /meta-python/recipes-devtools/python/python-numeric/0001-it-tries-to-define-this-function-differently-than-it.patch
parent	c028b3652715600a0bed43314c4f1b53d7e0181e (diff)
download	meta-openembedded-de8681b4a2a101b99dd2c48d89a7de2ccd9a961f.tar.gz

python3-sqlparse: Fix CVE-2024-4340

Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-4340 Upstream-patch: https://github.com/andialbrecht/sqlparse/commit/b4a39d9850969b4e1d6940d32094ee0b42a2cf03 Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python-numeric/0001-it-tries-to-define-this-function-differently-than-it.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: