The relevant CVEs are tracked with ethereum:eth-account CPE, and the default python:eth-account one doesn't match relevant entries.
Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%eth-account%'; CVE-2022-1930|ethereum|eth-account|||0.5.9|< Signed-off-by: Gyorgy Sarvari <[email protected]> --- .../recipes-devtools/python/python3-eth-account_0.13.7.bb | 1 + 1 file changed, 1 insertion(+) diff --git a/meta-python/recipes-devtools/python/python3-eth-account_0.13.7.bb b/meta-python/recipes-devtools/python/python3-eth-account_0.13.7.bb index a3ae8a7802..00deb53c88 100644 --- a/meta-python/recipes-devtools/python/python3-eth-account_0.13.7.bb +++ b/meta-python/recipes-devtools/python/python3-eth-account_0.13.7.bb @@ -7,6 +7,7 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=a26e64020156e806cf0054a6d504b301" SRC_URI[sha256sum] = "5853ecbcbb22e65411176f121f5f24b8afeeaf13492359d254b16d8b18c77a46" PYPI_PACKAGE = "eth_account" +CVE_PRODUCT = "eth-account" inherit pypi setuptools3
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#123060): https://lists.openembedded.org/g/openembedded-devel/message/123060 Mute This Topic: https://lists.openembedded.org/mt/117009260/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
