탐색 도움말
가입하기 로그인
PUBLIC_REPOS
/
buildroot
의 미러 git://git.buildroot.net/buildroot
2
1
포크 0
파일
소스 검색

package/python-sqlparse: security bump to version 0.5.1

Changelog:
* https://sqlparse.readthedocs.io/en/latest/changes.html#release-0-5-1-jul-15-2024
* https://sqlparse.readthedocs.io/en/latest/changes.html#release-0-5-0-apr-13-2024

Version 0.5.0 fixes the following security issue [1]:
Parsing heavily nested list leads to Denial of Service

Build backend switched from flit to hatchling in [2].

[1] https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-2m57-hf25-phgg
[2] https://github.com/andialbrecht/sqlparse/commit/326a316446c3e091a93950251e3e376ebf0d4127

Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Marcus Hoffmann 11 달 전
부모
ebef582bd2
커밋
65247fcc6a
2개의 변경된 파일6개의 추가작업 그리고 5개의 파일을 삭제
분할 보기 변경상태 보기
  1. 2 2
      package/python-sqlparse/python-sqlparse.hash
  2. 4 3
      package/python-sqlparse/python-sqlparse.mk

+ 2 - 2
package/python-sqlparse/python-sqlparse.hash
파일 보기 

@@ -1,5 +1,5 @@
 
 # md5, sha256 from https://pypi.org/pypi/sqlparse/json
 
-md5  67798c7a0dae90f263d20e9ecf62c8cd  sqlparse-0.4.4.tar.gz
 
-sha256  d446183e84b8349fa3061f0fe7f06ca94ba65b426946ffebe6e3e8295332420c  sqlparse-0.4.4.tar.gz
 
+md5  969a64f03d7da1144fc74aad390f9db4  sqlparse-0.5.1.tar.gz
 
+sha256  bb6b4df465655ef332548e24f08e205afc81b9ab86cb1c45657a7ff173a3a00e  sqlparse-0.5.1.tar.gz
 
 # Locally computed sha256 checksums
 
 sha256  c1938235b80d39e93138eae89edc3af67e18ecbc40d266529fa57b2dce426310  LICENSE

+ 4 - 3
package/python-sqlparse/python-sqlparse.mk
파일 보기 

@@ -4,12 +4,13 @@
 
 #
 
 ################################################################################
 
 
-PYTHON_SQLPARSE_VERSION = 0.4.4
 
+PYTHON_SQLPARSE_VERSION = 0.5.1
 
 PYTHON_SQLPARSE_SOURCE = sqlparse-$(PYTHON_SQLPARSE_VERSION).tar.gz
 
-PYTHON_SQLPARSE_SITE = https://files.pythonhosted.org/packages/65/16/10f170ec641ed852611b6c9441b23d10b5702ab5288371feab3d36de2574
 
-PYTHON_SQLPARSE_SETUP_TYPE = flit
 
+PYTHON_SQLPARSE_SITE = https://files.pythonhosted.org/packages/73/82/dfa23ec2cbed08a801deab02fe7c904bfb00765256b155941d789a338c68
 
+PYTHON_SQLPARSE_SETUP_TYPE = pep517
 
 PYTHON_SQLPARSE_LICENSE = BSD-3-Clause
 
 PYTHON_SQLPARSE_LICENSE_FILES = LICENSE
 
+PYTHON_SQLPARSE_DEPENDENCIES = host-python-hatchling
 
 PYTHON_SQLPARSE_CPE_ID_VENDOR = sqlparse_project
 
 PYTHON_SQLPARSE_CPE_ID_PRODUCT = sqlparse