[oe] [meta-python][PATCH 33/34] python3-pymongo: set CVE_PRODUCT

Gyorgy Sarvari via lists.openembedded.org Tue, 30 Dec 2025 23:55:09 -0800

The default python:pymongo CPE fails to match related CVE entries, because
they are tracked using mongodb:pymongo CPE. Set CVE_PRODUCT accordingly.


See CVE db query:
sqlite> select * from products where product like '%pymongo%';
CVE-2024-5629|mongodb|pymongo|||4.6.3|<|0

Signed-off-by: Gyorgy Sarvari <[email protected]>
---
 meta-python/recipes-devtools/python/python3-pymongo_4.15.5.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta-python/recipes-devtools/python/python3-pymongo_4.15.5.bb 
b/meta-python/recipes-devtools/python/python3-pymongo_4.15.5.bb
index 916fd0f1d9..80f07e4425 100644
--- a/meta-python/recipes-devtools/python/python3-pymongo_4.15.5.bb
+++ b/meta-python/recipes-devtools/python/python3-pymongo_4.15.5.bb
@@ -10,6 +10,8 @@ LIC_FILES_CHKSUM = 
"file://LICENSE;md5=86d3f3a95c324c9479bd8986968f4327"
 
 SRC_URI[sha256sum] = 
"3a8d6bf2610abe0c97c567cf98bf5bba3e90ccc93cc03c9dde75fa11e4267b42"
 
+CVE_PRODUCT = "pymongo"
+
 inherit pypi python_hatchling
 
 PACKAGES =+ "python3-bson"

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#123073): 
https://lists.openembedded.org/g/openembedded-devel/message/123073
Mute This Topic: https://lists.openembedded.org/mt/117009285/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

[oe] [meta-python][PATCH 33/34] python3-pymongo: set CVE_PRODUCT

Reply via email to