* [Buildroot] [PATCH] package/python-ecdsa: update CPE @ 2026-06-02 12:40 Thomas Perale via buildroot 2026-06-03 18:46 ` Peter Korsgaard 2026-06-12 11:38 ` Thomas Perale via buildroot 0 siblings, 2 replies; 3+ messages in thread From: Thomas Perale via buildroot @ 2026-06-02 12:40 UTC (permalink / raw) To: buildroot; +Cc: James Hilliard The CPE 'python-ecdsa_project:python-ecdsa' hasn't received new CVE since 2019 while 'tlsfuzzer:ecdsa' received two [1][2]. See the package CVE history at [3]. [1] https://nvd.nist.gov/vuln/detail/CVE-2026-33936 [2] https://nvd.nist.gov/vuln/detail/CVE-2024-23342 [3] https://security-tracker.debian.org/tracker/source-package/python-ecdsa Signed-off-by: Thomas Perale <thomas.perale@mind.be> --- package/python-ecdsa/python-ecdsa.mk | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/package/python-ecdsa/python-ecdsa.mk b/package/python-ecdsa/python-ecdsa.mk index c94cc0512d..b1ac6fe1b8 100644 --- a/package/python-ecdsa/python-ecdsa.mk +++ b/package/python-ecdsa/python-ecdsa.mk @@ -10,6 +10,7 @@ PYTHON_ECDSA_SITE = https://files.pythonhosted.org/packages/c0/1f/924e3caae75f47 PYTHON_ECDSA_SETUP_TYPE = setuptools PYTHON_ECDSA_LICENSE = MIT PYTHON_ECDSA_LICENSE_FILES = LICENSE -PYTHON_ECDSA_CPE_ID_VALID = YES +PYTHON_ECDSA_CPE_ID_VENDOR = tlsfuzzer +PYTHON_ECDSA_CPE_ID_PRODUCT = ecdsa $(eval $(python-package)) -- 2.54.0 _______________________________________________ buildroot mailing list buildroot@buildroot.org https://lists.buildroot.org/mailman/listinfo/buildroot ^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [Buildroot] [PATCH] package/python-ecdsa: update CPE 2026-06-02 12:40 [Buildroot] [PATCH] package/python-ecdsa: update CPE Thomas Perale via buildroot @ 2026-06-03 18:46 ` Peter Korsgaard 2026-06-12 11:38 ` Thomas Perale via buildroot 1 sibling, 0 replies; 3+ messages in thread From: Peter Korsgaard @ 2026-06-03 18:46 UTC (permalink / raw) To: Thomas Perale via buildroot; +Cc: Thomas Perale, James Hilliard >>>>> "Thomas" == Thomas Perale via buildroot <buildroot@buildroot.org> writes: > The CPE 'python-ecdsa_project:python-ecdsa' hasn't received new CVE > since 2019 while 'tlsfuzzer:ecdsa' received two [1][2]. > See the package CVE history at [3]. > [1] https://nvd.nist.gov/vuln/detail/CVE-2026-33936 > [2] https://nvd.nist.gov/vuln/detail/CVE-2024-23342 > [3] https://security-tracker.debian.org/tracker/source-package/python-ecdsa > Signed-off-by: Thomas Perale <thomas.perale@mind.be> Committed, thanks. -- Bye, Peter Korsgaard _______________________________________________ buildroot mailing list buildroot@buildroot.org https://lists.buildroot.org/mailman/listinfo/buildroot ^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [Buildroot] [PATCH] package/python-ecdsa: update CPE 2026-06-02 12:40 [Buildroot] [PATCH] package/python-ecdsa: update CPE Thomas Perale via buildroot 2026-06-03 18:46 ` Peter Korsgaard @ 2026-06-12 11:38 ` Thomas Perale via buildroot 1 sibling, 0 replies; 3+ messages in thread From: Thomas Perale via buildroot @ 2026-06-12 11:38 UTC (permalink / raw) To: Thomas Perale; +Cc: buildroot In reply of: > The CPE 'python-ecdsa_project:python-ecdsa' hasn't received new CVE > since 2019 while 'tlsfuzzer:ecdsa' received two [1][2]. > > See the package CVE history at [3]. > > [1] https://nvd.nist.gov/vuln/detail/CVE-2026-33936 > [2] https://nvd.nist.gov/vuln/detail/CVE-2024-23342 > [3] https://security-tracker.debian.org/tracker/source-package/python-ecdsa > > Signed-off-by: Thomas Perale <thomas.perale@mind.be> Applied to 2025.02.x & 2026.02.x. Thanks > --- > package/python-ecdsa/python-ecdsa.mk | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > > diff --git a/package/python-ecdsa/python-ecdsa.mk b/package/python-ecdsa/python-ecdsa.mk > index c94cc0512d..b1ac6fe1b8 100644 > --- a/package/python-ecdsa/python-ecdsa.mk > +++ b/package/python-ecdsa/python-ecdsa.mk > @@ -10,6 +10,7 @@ PYTHON_ECDSA_SITE = https://files.pythonhosted.org/packages/c0/1f/924e3caae75f47 > PYTHON_ECDSA_SETUP_TYPE = setuptools > PYTHON_ECDSA_LICENSE = MIT > PYTHON_ECDSA_LICENSE_FILES = LICENSE > -PYTHON_ECDSA_CPE_ID_VALID = YES > +PYTHON_ECDSA_CPE_ID_VENDOR = tlsfuzzer > +PYTHON_ECDSA_CPE_ID_PRODUCT = ecdsa > > $(eval $(python-package)) > -- > 2.54.0 > > _______________________________________________ > buildroot mailing list > buildroot@buildroot.org > https://lists.buildroot.org/mailman/listinfo/buildroot _______________________________________________ buildroot mailing list buildroot@buildroot.org https://lists.buildroot.org/mailman/listinfo/buildroot ^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2026-06-12 11:38 UTC | newest] Thread overview: 3+ messages (download: mbox.gz follow: Atom feed -- links below jump to the message on this page -- 2026-06-02 12:40 [Buildroot] [PATCH] package/python-ecdsa: update CPE Thomas Perale via buildroot 2026-06-03 18:46 ` Peter Korsgaard 2026-06-12 11:38 ` Thomas Perale via buildroot
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox