[Buildroot] [git commit] package/python3: drop CVE-2022-45061 from IGNORE_CVES
Thomas Petazzoni
thomas.petazzoni at bootlin.com
Thu Sep 21 10:30:43 UTC 2023
commit: https://git.buildroot.net/buildroot/commit/?id=43dbfe4670c3283ea1b2f9a884a09ea6f8f9dcb9
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/master
CVE-2022-45061 affects python <= 3.7.15, 3.8.0 through 3.8.15,
3.9.0 through 3.9.15, 3.10.0 through 3.10.8
The mentioned patch was removed in c38de813 when bumping to 3.11.1.
Signed-off-by: Daniel Lang <dalang at gmx.at>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni at bootlin.com>
---
package/python3/python3.mk | 3 ---
1 file changed, 3 deletions(-)
diff --git a/package/python3/python3.mk b/package/python3/python3.mk
index 5f8fa5b58d..cfe5e1ee6e 100644
--- a/package/python3/python3.mk
+++ b/package/python3/python3.mk
@@ -13,9 +13,6 @@ PYTHON3_LICENSE_FILES = LICENSE
PYTHON3_CPE_ID_VENDOR = python
PYTHON3_CPE_ID_PRODUCT = python
-# 0033-3.11-gh-98433-Fix-quadratic-time-idna-decoding.-GH-9.patch
-PYTHON3_IGNORE_CVES += CVE-2022-45061
-
# This host Python is installed in $(HOST_DIR), as it is needed when
# cross-compiling third-party Python modules.
More information about the buildroot
mailing list