Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

nodejs: 12.19.0 -> 12.19.1 #301

Closed
wants to merge 1 commit into from
Closed

nodejs: 12.19.0 -> 12.19.1 #301

wants to merge 1 commit into from

Conversation

viatsk
Copy link
Contributor

@viatsk viatsk commented Dec 14, 2020

Uprev nodejs in order to fix CVE-2020-8277.
This CVE allows an attacker to trigger a DNS request for a host
of their choice, which could trigger a Denial of Service in
nodejs versions < 12.19.1.

See https://nvd.nist.gov/vuln/detail/CVE-2020-8277 for details.

CVE: CVE-2020-8277
Signed-off-by: Stacy Gaikovaia [email protected]

kraj
kraj requested changes Dec 14, 2020
View reviewed changes
Copy link
Contributor

@kraj kraj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please delete the 12.19.0 recipes as well.

@viatsk
nodejs: 12.19.0 -> 12.19.1
f40d3da 
Uprev nodejs in order to fix CVE-2020-8277.
This CVE allows an attacker to trigger a DNS request for a host
of their choice, which could trigger a Denial of Service in
nodejs versions < 12.19.1.

See https://nvd.nist.gov/vuln/detail/CVE-2020-8277 for details.

CVE: CVE-2020-8277
Signed-off-by: Stacy Gaikovaia <[email protected]>
@viatsk
Copy link
Contributor Author

viatsk commented Dec 17, 2020

I've removed the old recipe

@viatsk viatsk requested a review from kraj December 18, 2020 17:15
@kraj
Copy link
Contributor

kraj commented Dec 19, 2020

its now merged a440154

@kraj kraj closed this Dec 19, 2020
kraj pushed a commit to YoeDistro/meta-openembedded that referenced this pull request Mar 30, 2024
@alperak @kraj
python3-validators: upgrade 0.22.0 > 0.24.0 and enable ptest
df763fc 
License-Update: Rename LICENSE to LICENSE.txt and update copyright year

* Ptest and library example tested on qemux86-64 and qemuarm64

* Add ptest into PTESTS_FAST_META_PYTHON

qemux86-64:

Testsuite summary
TOTAL: 599
PASS: 599
SKIP: 0
XFAIL: 0
FAIL: 0
XPASS: 0
ERROR: 0
DURATION: 19
END: /usr/lib/python3-validators/ptest
2024-03-30T05:07
STOP: ptest-runner
TOTAL: 1 FAIL: 0

qemuarm64:

Testsuite summary
TOTAL: 599
PASS: 599
SKIP: 0
XFAIL: 0
FAIL: 0
XPASS: 0
ERROR: 0
DURATION: 18
END: /usr/lib/python3-validators/ptest
2024-03-30T05:10
STOP: ptest-runner
TOTAL: 1 FAIL: 0

Changelog:

0.24.0
===========
Features

    feat: conditionally raises ValidationError; bump version by @yozachar in openembedded#343

Maintenance

    patch: domain & url modules by @yozachar in openembedded#339
    fix: domain name not confirming to rfc_2782 by @yozachar in openembedded#341
    maint: update dev dependencies; adds favicon to docs by @yozachar in openembedded#342

0.23.2
===========
Maintenance

    maint: rectifies changelog by @yozachar in openembedded#336
    fix: packaging as well as rST & md document generation by @yozachar in openembedded#337

0.23.1
===========
Maintenance

    maint: fix between & length validators by @yozachar in openembedded#334
    fix: manual nav reference for mkdocs; bumps version by @yozachar in openembedded#335

0.23.0
===========
Features

    feat: add french i18n validation by @imperosol in openembedded#308

Maintenance

    fix: Valid URLs failing validation - query and fragment parts by @danherbriley in openembedded#297
    fix: bug in between module by @yozachar in openembedded#301
    chore: update dependencies, improve packaging by @yozachar in openembedded#304
    Fix fragment check by @darkdragon-001 in openembedded#305
    build(deps): bump urllib3 from 2.0.6 to 2.0.7 in /package by @dependabot in openembedded#310
    fix: allow pct-encoded entities in fragments by @conitrade-as in openembedded#317
    chore: update dev dependencies by @yozachar in openembedded#318
    build(deps): bump gitpython from 3.1.37 to 3.1.41 in /package by @dependabot in openembedded#321
    build(deps): bump jinja2 from 3.1.2 to 3.1.3 in /package by @dependabot in openembedded#322
    chore: monthly updates for Jan'24 by @yozachar in openembedded#324
    maint: adds versiond docs; update copyright year by @yozachar in openembedded#329
    chore: update dev dependencies by @yozachar in openembedded#330
    build(deps): bump gitpython from 3.1.37 to 3.1.41 in /package by @dependabot in openembedded#331
    build(deps): bump jinja2 from 3.1.2 to 3.1.3 in /package by @dependabot in openembedded#332
    build(deps): bump urllib3 from 2.0.6 to 2.0.7 in /package by @dependabot in openembedded#319

Signed-off-by: alperak <[email protected]>
Signed-off-by: Khem Raj <[email protected]>
halstead pushed a commit that referenced this pull request Mar 31, 2024
@alperak @kraj
python3-validators: upgrade 0.22.0 > 0.24.0 and enable ptest
e6673cf 
License-Update: Rename LICENSE to LICENSE.txt and update copyright year

* Ptest and library example tested on qemux86-64 and qemuarm64

* Add ptest into PTESTS_FAST_META_PYTHON

qemux86-64:

Testsuite summary
TOTAL: 599
PASS: 599
SKIP: 0
XFAIL: 0
FAIL: 0
XPASS: 0
ERROR: 0
DURATION: 19
END: /usr/lib/python3-validators/ptest
2024-03-30T05:07
STOP: ptest-runner
TOTAL: 1 FAIL: 0

qemuarm64:

Testsuite summary
TOTAL: 599
PASS: 599
SKIP: 0
XFAIL: 0
FAIL: 0
XPASS: 0
ERROR: 0
DURATION: 18
END: /usr/lib/python3-validators/ptest
2024-03-30T05:10
STOP: ptest-runner
TOTAL: 1 FAIL: 0

Changelog:

0.24.0
===========
Features

    feat: conditionally raises ValidationError; bump version by @yozachar in #343

Maintenance

    patch: domain & url modules by @yozachar in #339
    fix: domain name not confirming to rfc_2782 by @yozachar in #341
    maint: update dev dependencies; adds favicon to docs by @yozachar in #342

0.23.2
===========
Maintenance

    maint: rectifies changelog by @yozachar in #336
    fix: packaging as well as rST & md document generation by @yozachar in #337

0.23.1
===========
Maintenance

    maint: fix between & length validators by @yozachar in #334
    fix: manual nav reference for mkdocs; bumps version by @yozachar in #335

0.23.0
===========
Features

    feat: add french i18n validation by @imperosol in #308

Maintenance

    fix: Valid URLs failing validation - query and fragment parts by @danherbriley in #297
    fix: bug in between module by @yozachar in #301
    chore: update dependencies, improve packaging by @yozachar in #304
    Fix fragment check by @darkdragon-001 in #305
    build(deps): bump urllib3 from 2.0.6 to 2.0.7 in /package by @dependabot in #310
    fix: allow pct-encoded entities in fragments by @conitrade-as in #317
    chore: update dev dependencies by @yozachar in #318
    build(deps): bump gitpython from 3.1.37 to 3.1.41 in /package by @dependabot in #321
    build(deps): bump jinja2 from 3.1.2 to 3.1.3 in /package by @dependabot in #322
    chore: monthly updates for Jan'24 by @yozachar in #324
    maint: adds versiond docs; update copyright year by @yozachar in #329
    chore: update dev dependencies by @yozachar in #330
    build(deps): bump gitpython from 3.1.37 to 3.1.41 in /package by @dependabot in #331
    build(deps): bump jinja2 from 3.1.2 to 3.1.3 in /package by @dependabot in #332
    build(deps): bump urllib3 from 2.0.6 to 2.0.7 in /package by @dependabot in #319

Signed-off-by: alperak <[email protected]>
Signed-off-by: Khem Raj <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kraj kraj kraj approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@viatsk @kraj