buildroot

mirror of https://github.com/godotengine/buildroot.git synced 2026-01-15 06:10:19 +03:00

Author	SHA1	Message	Date
James Hilliard	ae0bca61ec	package/python-pyyaml: security bump to version 5.3.1 Fixes the following security issue: 386: Prevents arbitrary code execution during python/object/new constructor https://github.com/yaml/pyyaml/pull/386 The hash of the license file changed due to the following diff: -Copyright (c) 2017-2019 Ingy döt Net +Copyright (c) 2017-2020 Ingy döt Net Signed-off-by: James Hilliard <james.hilliard1@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit `9063df44da`) [Peter: mention security impact] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2020-04-07 20:17:57 +02:00
James Hilliard	fcca4ef19d	package/python-pyyaml: bump to version 5.3 Signed-off-by: James Hilliard <james.hilliard1@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2020-02-16 15:23:35 +01:00
Asaf Kahlon	2c938815d7	package/python-pyyaml: bump to version 5.1.2 Also add hash for license file. Signed-off-by: Asaf Kahlon <asafka7@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2019-10-18 20:57:48 +02:00
Asaf Kahlon	1cf071726d	package/python-pyyaml: security bump to 4.2b4 Fixes CVE-2017-18342: In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. Signed-off-by: Asaf Kahlon <asafka7@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>	2019-01-13 14:14:18 +01:00
Yegor Yefremov	fbe289f145	python-pyyaml: bump to version 3.13 Fixes: http://autobuild.buildroot.net/results/e71/e715a7dc8b6856b4aba0b9b4568d61420c52a5c8 Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>	2018-08-28 22:30:03 +02:00
Yegor Yefremov	d3760efa7b	python-pyyaml: bump to version 3.12 Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2017-02-07 20:39:18 +01:00
Geoffrey Ragot	f098adb66c	python-pyyaml: new package [Thomas: - use 'select' rather than 'depends on' for the yaml library dependency - add hash file. - add upstream URL in Config.in help text - rework commit title.] Signed-off-by: Geoffrey Ragot <geoffrey.ragot@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2015-07-28 00:09:21 +02:00

7 Commits