From c927983ba7af9895e550018476759dd12fa90452 Mon Sep 17 00:00:00 2001 From: Tim Orling Date: Tue, 1 Nov 2022 08:08:57 -0700 Subject: [PATCH] python3-mako: upgrade 1.2.2 -> 1.2.3 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Released: Thu Sep 22 2022 * bug - [bug] [lexer] * Fixed issue in lexer in the same category as that of #366 where the regexp used to match an end tag didn’t correctly organize for matching characters surrounded by whitespace, leading to high memory / interpreter hang if a closing tag incorrectly had a large amount of unterminated space in it. Credit to Sebastian Chnelik for locating the issue. As Mako templates inherently render and directly invoke arbitrary Python code from the template source, it is never appropriate to create templates that contain untrusted input. References: #367 [1] https://docs.makotemplates.org/en/latest/changelog.html#change-1.2.3 [2] https://github.com/sqlalchemy/mako/issues/366 [3] https://github.com/sqlalchemy/mako/issues/367 Signed-off-by: Tim Orling Signed-off-by: Richard Purdie --- .../python/{python3-mako_1.2.2.bb => python3-mako_1.2.3.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/python/{python3-mako_1.2.2.bb => python3-mako_1.2.3.bb} (85%) diff --git a/meta/recipes-devtools/python/python3-mako_1.2.2.bb b/meta/recipes-devtools/python/python3-mako_1.2.3.bb similarity index 85% rename from meta/recipes-devtools/python/python3-mako_1.2.2.bb rename to meta/recipes-devtools/python/python3-mako_1.2.3.bb index e3774ee62155..12acfee77730 100644 --- a/meta/recipes-devtools/python/python3-mako_1.2.2.bb +++ b/meta/recipes-devtools/python/python3-mako_1.2.3.bb @@ -8,7 +8,7 @@ PYPI_PACKAGE = "Mako" inherit pypi python_setuptools_build_meta -SRC_URI[sha256sum] = "3724869b363ba630a272a5f89f68c070352137b8fd1757650017b7e06fda163f" +SRC_URI[sha256sum] = "7fde96466fcfeedb0eed94f187f20b23d85e4cb41444be0e542e2c8c65c396cd" RDEPENDS:${PN} = "${PYTHON_PN}-html \ ${PYTHON_PN}-markupsafe \