From 0a97cbba10a708b6147c8d000c9ee2509ed5cc75 Mon Sep 17 00:00:00 2001 From: Tim Orling Date: Tue, 1 Nov 2022 08:08:57 -0700 Subject: [PATCH] python3-mako: upgrade 1.2.2 -> 1.2.3 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Released: Thu Sep 22 2022 * bug - [bug] [lexer] * Fixed issue in lexer in the same category as that of #366 where the regexp used to match an end tag didn’t correctly organize for matching characters surrounded by whitespace, leading to high memory / interpreter hang if a closing tag incorrectly had a large amount of unterminated space in it. Credit to Sebastian Chnelik for locating the issue. As Mako templates inherently render and directly invoke arbitrary Python code from the template source, it is never appropriate to create templates that contain untrusted input. References: #367 [1] https://docs.makotemplates.org/en/latest/changelog.html#change-1.2.3 [2] https://github.com/sqlalchemy/mako/issues/366 [3] https://github.com/sqlalchemy/mako/issues/367 (From OE-Core rev: 49ad6f031458e1f48f24547dc88e41abc4ec41a6) Signed-off-by: Tim Orling Signed-off-by: Richard Purdie --- .../python/{python3-mako_1.2.2.bb => python3-mako_1.2.3.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/python/{python3-mako_1.2.2.bb => python3-mako_1.2.3.bb} (85%) diff --git a/meta/recipes-devtools/python/python3-mako_1.2.2.bb b/meta/recipes-devtools/python/python3-mako_1.2.3.bb similarity index 85% rename from meta/recipes-devtools/python/python3-mako_1.2.2.bb rename to meta/recipes-devtools/python/python3-mako_1.2.3.bb index e3774ee6215..12acfee7773 100644 --- a/meta/recipes-devtools/python/python3-mako_1.2.2.bb +++ b/meta/recipes-devtools/python/python3-mako_1.2.3.bb @@ -8,7 +8,7 @@ PYPI_PACKAGE = "Mako" inherit pypi python_setuptools_build_meta -SRC_URI[sha256sum] = "3724869b363ba630a272a5f89f68c070352137b8fd1757650017b7e06fda163f" +SRC_URI[sha256sum] = "7fde96466fcfeedb0eed94f187f20b23d85e4cb41444be0e542e2c8c65c396cd" RDEPENDS:${PN} = "${PYTHON_PN}-html \ ${PYTHON_PN}-markupsafe \