summaryrefslogtreecommitdiffstats
path: root/package/python-pyyaml/python-pyyaml.mk
diff options
context:
space:
mode:
authorAsaf Kahlon <asafka7@gmail.com>2019-01-12 19:42:27 +0200
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>2019-01-13 14:14:18 +0100
commit1cf071726d3637458cfb0f3f546c69377f720de0 (patch)
treec3577943745d7574ea5d8b0fed87a024b159e7f8 /package/python-pyyaml/python-pyyaml.mk
parentcff057eae53bbce54ef708dda43c76eb3cf8b5d3 (diff)
downloadbuildroot-1cf071726d3637458cfb0f3f546c69377f720de0.tar.gz
buildroot-1cf071726d3637458cfb0f3f546c69377f720de0.zip
package/python-pyyaml: security bump to 4.2b4
Fixes CVE-2017-18342: In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. Signed-off-by: Asaf Kahlon <asafka7@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Diffstat (limited to 'package/python-pyyaml/python-pyyaml.mk')
-rw-r--r--package/python-pyyaml/python-pyyaml.mk4
1 files changed, 2 insertions, 2 deletions
diff --git a/package/python-pyyaml/python-pyyaml.mk b/package/python-pyyaml/python-pyyaml.mk
index cbf8df7b2d..95f0f0bb9e 100644
--- a/package/python-pyyaml/python-pyyaml.mk
+++ b/package/python-pyyaml/python-pyyaml.mk
@@ -4,9 +4,9 @@
#
################################################################################
-PYTHON_PYYAML_VERSION = 3.13
+PYTHON_PYYAML_VERSION = 4.2b4
PYTHON_PYYAML_SOURCE = PyYAML-$(PYTHON_PYYAML_VERSION).tar.gz
-PYTHON_PYYAML_SITE = https://files.pythonhosted.org/packages/9e/a3/1d13970c3f36777c583f136c136f804d70f500168edc1edea6daa7200769
+PYTHON_PYYAML_SITE = https://files.pythonhosted.org/packages/a8/c6/a8d1555e795dbd0375c3c93b576ca13bbf139db51ea604afa19a2c35fc03
PYTHON_PYYAML_SETUP_TYPE = distutils
PYTHON_PYYAML_LICENSE = MIT
PYTHON_PYYAML_LICENSE_FILES = LICENSE
OpenPOWER on IntegriCloud