Skip to content

Commit 722d41d

Browse files
alexander-smolyakovalexander-smolyakov
authored
[universal] Update setuptools for Python 3.10 due to GHSA-r9hx-vwmv-q579 (#876)
* [universal] Python 3.10: Update `setuptools` due to CVE-2022-40897 - Restore patch for the setuptools package. * Bump package version to align with 2.6.0 release
1 parent 804db60 commit 722d41d

File tree

1 file changed

+1
-0
lines changed
  • src/universal/.devcontainer/local-features/patch-python

1 file changed

+1
-0
lines changed

src/universal/.devcontainer/local-features/patch-python/install.sh

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -44,6 +44,7 @@ update_package() {
4444

4545
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40897
4646
update_package /usr/local/python/3.9.*/bin/python setuptools 65.5.1
47+
update_package /usr/local/python/3.10.*/bin/python setuptools 68.2.2
4748

4849
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45803
4950
update_package /usr/local/python/3.10.*/bin/python urllib3 2.0.7

0 commit comments

Comments
 (0)