python-cryptography: Update to 3.3.2
authorJeffery To <jeffery.to@gmail.com>
Sun, 14 Feb 2021 22:26:38 +0000 (06:26 +0800)
committerJeffery To <jeffery.to@gmail.com>
Sun, 14 Feb 2021 22:26:38 +0000 (06:26 +0800)
This fixes CVE-2020-36242 (buffer overflows caused by integer overflow
in OpenSSL).

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
lang/python/python-cryptography/Makefile

index ebbbf88c91f4af7f36e5cd7a141d6563a675bec5..f0aa97ad24708f014a0773816d11d83f3b8b9906 100644 (file)
@@ -8,11 +8,11 @@
 include $(TOPDIR)/rules.mk
 
 PKG_NAME:=python-cryptography
-PKG_VERSION:=3.3.1
+PKG_VERSION:=3.3.2
 PKG_RELEASE:=1
 
 PYPI_NAME:=cryptography
-PKG_HASH:=7e177e4bea2de937a584b13645cab32f25e3d96fc0bc4a4cf99c27dc77682be6
+PKG_HASH:=5a60d3780149e13b7a6ff7ad6526b38846354d11a15e21068e57073e29e19bed
 
 PKG_LICENSE:=Apache-2.0 BSD-3-Clause
 PKG_LICENSE_FILES:=LICENSE.APACHE LICENSE.BSD
@@ -20,7 +20,7 @@ PKG_MAINTAINER:=Jeffery To <jeffery.to@gmail.com>, Alexandru Ardelean <ardeleana
 
 PKG_BUILD_DEPENDS:=libffi/host
 
-HOST_PYTHON3_PACKAGE_BUILD_DEPENDS:=cffi  # cffi>=1.8,!=1.11.3
+HOST_PYTHON3_PACKAGE_BUILD_DEPENDS:=cffi  # cffi>=1.12
 
 include ../pypi.mk
 include $(INCLUDE_DIR)/package.mk