* [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1
@ 2019-01-12 17:42 Asaf Kahlon
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-crossbar: " Asaf Kahlon
` (3 more replies)
0 siblings, 4 replies; 8+ messages in thread
From: Asaf Kahlon @ 2019-01-12 17:42 UTC (permalink / raw)
To: buildroot
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
---
package/python-autobahn/python-autobahn.hash | 4 ++--
package/python-autobahn/python-autobahn.mk | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/python-autobahn/python-autobahn.hash b/package/python-autobahn/python-autobahn.hash
index f6023ab2ee..dce40f160e 100644
--- a/package/python-autobahn/python-autobahn.hash
+++ b/package/python-autobahn/python-autobahn.hash
@@ -1,5 +1,5 @@
# md5, sha256 from https://pypi.org/pypi/autobahn/json
-md5 51b416c5503127911d9d8f1254967d44 autobahn-18.12.1.tar.gz
-sha256 bec9e04c97536a6c0044965db4a478672a01c4adee0aa84d9c4a0945b2adc879 autobahn-18.12.1.tar.gz
+md5 b296b8ae0f42e7df8052b28d574ede82 autobahn-19.1.1.tar.gz
+sha256 aebbadb700c13792a2967c79002855d1153b9ec8f2949d169e908388699596ff autobahn-19.1.1.tar.gz
# Locally computed sha256 checksums
sha256 0387eefce570453daaa60633f28676003731eeca28b2d0a0071c628e3a0004ef LICENSE
diff --git a/package/python-autobahn/python-autobahn.mk b/package/python-autobahn/python-autobahn.mk
index 6d51ede723..213e0314c9 100644
--- a/package/python-autobahn/python-autobahn.mk
+++ b/package/python-autobahn/python-autobahn.mk
@@ -4,9 +4,9 @@
#
################################################################################
-PYTHON_AUTOBAHN_VERSION = 18.12.1
+PYTHON_AUTOBAHN_VERSION = 19.1.1
PYTHON_AUTOBAHN_SOURCE = autobahn-$(PYTHON_AUTOBAHN_VERSION).tar.gz
-PYTHON_AUTOBAHN_SITE = https://files.pythonhosted.org/packages/76/5b/ab59e271a11a08d02b1a3a3b777f7dde442cf89b169bbc67219016a84e7e
+PYTHON_AUTOBAHN_SITE = https://files.pythonhosted.org/packages/66/cc/1e2b20dc6654d9a87fc30da36bfae687ec65428814378c44257a26fe5f2f
PYTHON_AUTOBAHN_LICENSE = MIT
PYTHON_AUTOBAHN_LICENSE_FILES = LICENSE
PYTHON_AUTOBAHN_SETUP_TYPE = setuptools
--
2.19.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-crossbar: bump to version 19.1.1
2019-01-12 17:42 [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Asaf Kahlon
@ 2019-01-12 17:42 ` Asaf Kahlon
2019-01-13 13:15 ` Thomas Petazzoni
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-engineio: bump to version 3.2.3 Asaf Kahlon
` (2 subsequent siblings)
3 siblings, 1 reply; 8+ messages in thread
From: Asaf Kahlon @ 2019-01-12 17:42 UTC (permalink / raw)
To: buildroot
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
---
package/python-crossbar/python-crossbar.hash | 4 ++--
package/python-crossbar/python-crossbar.mk | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/python-crossbar/python-crossbar.hash b/package/python-crossbar/python-crossbar.hash
index 4b73f81338..665cc25d1f 100644
--- a/package/python-crossbar/python-crossbar.hash
+++ b/package/python-crossbar/python-crossbar.hash
@@ -1,5 +1,5 @@
# md5, sha256 from https://pypi.org/pypi/crossbar/json
-md5 2f48f40f7a43eced7cb74353a303c3db crossbar-18.11.2.tar.gz
-sha256 8236f207222167747de006784a431cfa546f98b51f47e82cd71e7008f5a09690 crossbar-18.11.2.tar.gz
+md5 83c025eb8f1406642503aa590edabaf2 crossbar-19.1.1.tar.gz
+sha256 6b30970f8cbd6962581790444b19a0743f0c589bd441e727623e8a7004a8679b crossbar-19.1.1.tar.gz
# Locally computed
sha256 57c8ff33c9c0cfc3ef00e650a1cc910d7ee479a8bc509f6c9209a7c2a11399d6 LICENSE
diff --git a/package/python-crossbar/python-crossbar.mk b/package/python-crossbar/python-crossbar.mk
index 2a796f201f..787d0f9441 100644
--- a/package/python-crossbar/python-crossbar.mk
+++ b/package/python-crossbar/python-crossbar.mk
@@ -4,9 +4,9 @@
#
################################################################################
-PYTHON_CROSSBAR_VERSION = 18.11.2
+PYTHON_CROSSBAR_VERSION = 19.1.1
PYTHON_CROSSBAR_SOURCE = crossbar-$(PYTHON_CROSSBAR_VERSION).tar.gz
-PYTHON_CROSSBAR_SITE = https://files.pythonhosted.org/packages/f8/c7/1388883cb64db073c4878e0c83afedf785fd22e4cebc96523e105a000088
+PYTHON_CROSSBAR_SITE = https://files.pythonhosted.org/packages/38/55/54ac74ca6b4a3b0fe5919fd7ee787c444ce79d8dca58d561ea3f8e185782
PYTHON_CROSSBAR_LICENSE = AGPL-3.0
PYTHON_CROSSBAR_LICENSE_FILES = LICENSE
PYTHON_CROSSBAR_SETUP_TYPE = setuptools
--
2.19.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-engineio: bump to version 3.2.3
2019-01-12 17:42 [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Asaf Kahlon
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-crossbar: " Asaf Kahlon
@ 2019-01-12 17:42 ` Asaf Kahlon
2019-01-13 13:15 ` Thomas Petazzoni
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-pyyaml: security bump to 4.2b4 Asaf Kahlon
2019-01-13 13:15 ` [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Thomas Petazzoni
3 siblings, 1 reply; 8+ messages in thread
From: Asaf Kahlon @ 2019-01-12 17:42 UTC (permalink / raw)
To: buildroot
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
---
package/python-engineio/python-engineio.hash | 4 ++--
package/python-engineio/python-engineio.mk | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/python-engineio/python-engineio.hash b/package/python-engineio/python-engineio.hash
index b92b908a64..3b16d7ef61 100644
--- a/package/python-engineio/python-engineio.hash
+++ b/package/python-engineio/python-engineio.hash
@@ -1,5 +1,5 @@
# md5, sha256 from https://pypi.org/pypi/python-engineio/json
-md5 203f9b530086c83b6948d750c080d14e python-engineio-3.1.1.tar.gz
-sha256 3ec885307c404ff97d14dbdbf1461ede14c70c5adb015b2c97666819edbeef81 python-engineio-3.1.1.tar.gz
+md5 ba0fd43c77028bd6fed4ee1004f37c71 python-engineio-3.2.3.tar.gz
+sha256 401458bb0046d950c429dac3ef82ce12e3ff1236f63b4bbb344d60a1b51c4e94 python-engineio-3.2.3.tar.gz
# Locally computed sha256 checksums
sha256 c9e97d3dbc1fbbcdb4f7808b282cd646db887aff4f5313fe6bbe8d4c31405a9c LICENSE
diff --git a/package/python-engineio/python-engineio.mk b/package/python-engineio/python-engineio.mk
index de9070a55d..8d4e344247 100644
--- a/package/python-engineio/python-engineio.mk
+++ b/package/python-engineio/python-engineio.mk
@@ -4,8 +4,8 @@
#
################################################################################
-PYTHON_ENGINEIO_VERSION = 3.1.1
-PYTHON_ENGINEIO_SITE = https://files.pythonhosted.org/packages/c7/fd/9dad6c1794be838c05610c04e869bca9a3e0d94145ac71e57a9345a784b9
+PYTHON_ENGINEIO_VERSION = 3.2.3
+PYTHON_ENGINEIO_SITE = https://files.pythonhosted.org/packages/e6/1e/64fd629f8215b81bf0e5682504ebbbd10d1d48e52ee30d053484b6e91421
PYTHON_ENGINEIO_SETUP_TYPE = setuptools
PYTHON_ENGINEIO_LICENSE = MIT
PYTHON_ENGINEIO_LICENSE_FILES = LICENSE
--
2.19.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-pyyaml: security bump to 4.2b4
2019-01-12 17:42 [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Asaf Kahlon
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-crossbar: " Asaf Kahlon
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-engineio: bump to version 3.2.3 Asaf Kahlon
@ 2019-01-12 17:42 ` Asaf Kahlon
2019-01-13 13:15 ` Thomas Petazzoni
2019-01-13 13:15 ` [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Thomas Petazzoni
3 siblings, 1 reply; 8+ messages in thread
From: Asaf Kahlon @ 2019-01-12 17:42 UTC (permalink / raw)
To: buildroot
Fixes CVE-2017-18342: In PyYAML before 4.1, the yaml.load() API
could execute arbitrary code.
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
---
package/python-pyyaml/python-pyyaml.hash | 4 ++--
package/python-pyyaml/python-pyyaml.mk | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/python-pyyaml/python-pyyaml.hash b/package/python-pyyaml/python-pyyaml.hash
index 47a379ce6a..256742feb6 100644
--- a/package/python-pyyaml/python-pyyaml.hash
+++ b/package/python-pyyaml/python-pyyaml.hash
@@ -1,3 +1,3 @@
# md5, sha256 from https://pypi.python.org/pypi/pyyaml/json
-md5 b78b96636d68ac581c0e2f38158c224f PyYAML-3.13.tar.gz
-sha256 3ef3092145e9b70e3ddd2c7ad59bdd0252a94dfe3949721633e41344de00a6bf PyYAML-3.13.tar.gz
+md5 a842bc7391e145bbe4e7fd0d32da1132 PyYAML-4.2b4.tar.gz
+sha256 3c17fb92c8ba2f525e4b5f7941d850e7a48c3a59b32d331e2502a3cdc6648e76 PyYAML-4.2b4.tar.gz
diff --git a/package/python-pyyaml/python-pyyaml.mk b/package/python-pyyaml/python-pyyaml.mk
index cbf8df7b2d..95f0f0bb9e 100644
--- a/package/python-pyyaml/python-pyyaml.mk
+++ b/package/python-pyyaml/python-pyyaml.mk
@@ -4,9 +4,9 @@
#
################################################################################
-PYTHON_PYYAML_VERSION = 3.13
+PYTHON_PYYAML_VERSION = 4.2b4
PYTHON_PYYAML_SOURCE = PyYAML-$(PYTHON_PYYAML_VERSION).tar.gz
-PYTHON_PYYAML_SITE = https://files.pythonhosted.org/packages/9e/a3/1d13970c3f36777c583f136c136f804d70f500168edc1edea6daa7200769
+PYTHON_PYYAML_SITE = https://files.pythonhosted.org/packages/a8/c6/a8d1555e795dbd0375c3c93b576ca13bbf139db51ea604afa19a2c35fc03
PYTHON_PYYAML_SETUP_TYPE = distutils
PYTHON_PYYAML_LICENSE = MIT
PYTHON_PYYAML_LICENSE_FILES = LICENSE
--
2.19.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1
2019-01-12 17:42 [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Asaf Kahlon
` (2 preceding siblings ...)
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-pyyaml: security bump to 4.2b4 Asaf Kahlon
@ 2019-01-13 13:15 ` Thomas Petazzoni
3 siblings, 0 replies; 8+ messages in thread
From: Thomas Petazzoni @ 2019-01-13 13:15 UTC (permalink / raw)
To: buildroot
Hello,
On Sat, 12 Jan 2019 19:42:24 +0200, Asaf Kahlon wrote:
> Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
> ---
> package/python-autobahn/python-autobahn.hash | 4 ++--
> package/python-autobahn/python-autobahn.mk | 4 ++--
> 2 files changed, 4 insertions(+), 4 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
^ permalink raw reply [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-crossbar: bump to version 19.1.1
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-crossbar: " Asaf Kahlon
@ 2019-01-13 13:15 ` Thomas Petazzoni
0 siblings, 0 replies; 8+ messages in thread
From: Thomas Petazzoni @ 2019-01-13 13:15 UTC (permalink / raw)
To: buildroot
Hello,
On Sat, 12 Jan 2019 19:42:25 +0200, Asaf Kahlon wrote:
> Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
> ---
> package/python-crossbar/python-crossbar.hash | 4 ++--
> package/python-crossbar/python-crossbar.mk | 4 ++--
> 2 files changed, 4 insertions(+), 4 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
^ permalink raw reply [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-engineio: bump to version 3.2.3
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-engineio: bump to version 3.2.3 Asaf Kahlon
@ 2019-01-13 13:15 ` Thomas Petazzoni
0 siblings, 0 replies; 8+ messages in thread
From: Thomas Petazzoni @ 2019-01-13 13:15 UTC (permalink / raw)
To: buildroot
Hello,
On Sat, 12 Jan 2019 19:42:26 +0200, Asaf Kahlon wrote:
> Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
> ---
> package/python-engineio/python-engineio.hash | 4 ++--
> package/python-engineio/python-engineio.mk | 4 ++--
> 2 files changed, 4 insertions(+), 4 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
^ permalink raw reply [flat|nested] 8+ messages in thread
* [Buildroot] [PATCH 1/1] python-pyyaml: security bump to 4.2b4
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-pyyaml: security bump to 4.2b4 Asaf Kahlon
@ 2019-01-13 13:15 ` Thomas Petazzoni
0 siblings, 0 replies; 8+ messages in thread
From: Thomas Petazzoni @ 2019-01-13 13:15 UTC (permalink / raw)
To: buildroot
Hello,
On Sat, 12 Jan 2019 19:42:27 +0200, Asaf Kahlon wrote:
> Fixes CVE-2017-18342: In PyYAML before 4.1, the yaml.load() API
> could execute arbitrary code.
>
> Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
> ---
> package/python-pyyaml/python-pyyaml.hash | 4 ++--
> package/python-pyyaml/python-pyyaml.mk | 4 ++--
> 2 files changed, 4 insertions(+), 4 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2019-01-13 13:15 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-01-12 17:42 [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Asaf Kahlon
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-crossbar: " Asaf Kahlon
2019-01-13 13:15 ` Thomas Petazzoni
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-engineio: bump to version 3.2.3 Asaf Kahlon
2019-01-13 13:15 ` Thomas Petazzoni
2019-01-12 17:42 ` [Buildroot] [PATCH 1/1] python-pyyaml: security bump to 4.2b4 Asaf Kahlon
2019-01-13 13:15 ` Thomas Petazzoni
2019-01-13 13:15 ` [Buildroot] [PATCH 1/1] python-autobahn: bump to version 19.1.1 Thomas Petazzoni
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.