Projetos/rpi-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b57939e61959923180c40aeda7700ee62ef95113
rpi-buildroot/package/python-urllib3/python-urllib3.hash
Titouan Christophe ab2b4f5a06 package/python-urllib3: security bump to v2.5.0 
For release note, see:
https://github.com/urllib3/urllib3/releases/tag/2.5.0

This fixes the following vulnerabilities:
- CVE-2025-50181:
    urllib3 redirects are not disabled when retries are disabled on
    PoolManager instantiation

- CVE-2025-50182:
    urllib3 does not control redirects in browsers and Node.js

Signed-off-by: Titouan Christophe <titouan.christophe@mind.be>
[Julien: add link to release note in commit log]
Signed-off-by: Julien Olivain <ju.o@free.fr>
(cherry picked from commit 7006854ce1)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
2025-07-10 11:19:49 +02:00

6 lines
331 B
Plaintext
Raw Blame History

# md5, sha256 from https://pypi.org/pypi/urllib3/json
md5 2b8a86438e4d35fbc90572dbdb424759 urllib3-2.5.0.tar.gz
sha256 3fc47733c7e419d4bc3f6b3dc2b4f890bb743906a30d56ba4a5bfa4bbff92760 urllib3-2.5.0.tar.gz
# Locally computed sha256 checksums
sha256 130e3a64d5fdd5d096a752694634a7d9df284469de86e5732100268041e3d686 LICENSE.txt
Reference in New Issue View Git Blame Copy Permalink