Module: check_mk
Branch: master
Commit: b71cf89b46f9cf4fb63bb48cf9eaa87fff9193a4
URL:
http://git.mathias-kettner.de/git/?p=check_mk.git;a=commit;h=b71cf89b46f9cf…
Author: Lars Michelsen <lm(a)mathias-kettner.de>
Date: Fri Apr 5 21:26:14 2019 +0200
Bump PyYAML version to 5.1
This is done to cleanup potential vulnerability CVE-2017-18342
(
https://nvd.nist.gov/vuln/detail/CVE-2017-18342).
Our used components should not be affected at the moment. The
update is applied just to be on the safe side.
Change-Id: I18cb142f5c978c44718b39576836e747f763b5d4
---
Pipfile | 2 +-
Pipfile.lock | 58 ++++++++++-----------
omd/packages/python-modules/python-modules.make | 2 +-
omd/packages/python-modules/src/PyYAML-3.13.tar.gz | Bin 270607 -> 0 bytes
omd/packages/python-modules/src/PyYAML-5.1.tar.gz | Bin 0 -> 274244 bytes
5 files changed, 31 insertions(+), 31 deletions(-)
diff --git a/Pipfile b/Pipfile
index 3ba135b..b0f9a28 100644
--- a/Pipfile
+++ b/Pipfile
@@ -106,7 +106,7 @@ boto3 = "==1.9.42"
cachetools = "==3.0.0"
rsa = "==4.0"
google-auth = "==1.6.1"
-PyYAML = "==3.13"
+PyYAML = "==5.1"
websocket_client = "==0.54.0"
kubernetes = "==8.0.0"
# Has been added for jira notification plugin
diff --git a/Pipfile.lock b/Pipfile.lock
index d90307e..8bf0f2f 100644
--- a/Pipfile.lock
+++ b/Pipfile.lock
@@ -1,7 +1,7 @@
{
"_meta": {
"hash": {
- "sha256":
"b2579029f702ea256f34da7cabd1614cd4d548ff8e949f08c1ab4233e740fecb"
+ "sha256":
"6261d8b61efc33482eeae3b31b4c22d29978667c28d7673e9b8983404cba8d70"
},
"pipfile-spec": 6,
"requires": {
@@ -746,20 +746,20 @@
},
"pyyaml": {
"hashes": [
-
"sha256:3d7da3009c0f3e783b2c873687652d83b1bbfd5c88e9813fb7e5b03c0dd3108b",
-
"sha256:3ef3092145e9b70e3ddd2c7ad59bdd0252a94dfe3949721633e41344de00a6bf",
-
"sha256:40c71b8e076d0550b2e6380bada1f1cd1017b882f7e16f09a65be98e017f211a",
-
"sha256:558dd60b890ba8fd982e05941927a3911dc409a63dcb8b634feaa0cda69330d3",
-
"sha256:a7c28b45d9f99102fa092bb213aa12e0aaf9a6a1f5e395d36166639c1f96c3a1",
-
"sha256:aa7dd4a6a427aed7df6fb7f08a580d68d9b118d90310374716ae90b710280af1",
-
"sha256:bc558586e6045763782014934bfaf39d48b8ae85a2713117d16c39864085c613",
-
"sha256:d46d7982b62e0729ad0175a9bc7e10a566fc07b224d2c79fafb5e032727eaa04",
-
"sha256:d5eef459e30b09f5a098b9cea68bebfeb268697f78d647bd255a085371ac7f3f",
-
"sha256:e01d3203230e1786cd91ccfdc8f8454c8069c91bee3962ad93b87a4b2860f537",
-
"sha256:e170a9e6fcfd19021dd29845af83bb79236068bf5fd4df3327c1be18182b2531"
+
"sha256:1adecc22f88d38052fb787d959f003811ca858b799590a5eaa70e63dca50308c",
+
"sha256:436bc774ecf7c103814098159fbb84c2715d25980175292c648f2da143909f95",
+
"sha256:460a5a4248763f6f37ea225d19d5c205677d8d525f6a83357ca622ed541830c2",
+
"sha256:5a22a9c84653debfbf198d02fe592c176ea548cccce47553f35f466e15cf2fd4",
+
"sha256:7a5d3f26b89d688db27822343dfa25c599627bc92093e788956372285c6298ad",
+
"sha256:9372b04a02080752d9e6f990179a4ab840227c6e2ce15b95e1278456664cf2ba",
+
"sha256:a5dcbebee834eaddf3fa7366316b880ff4062e4bcc9787b78c7fbb4a26ff2dd1",
+
"sha256:aee5bab92a176e7cd034e57f46e9df9a9862a71f8f37cad167c6fc74c65f5b4e",
+
"sha256:c51f642898c0bacd335fc119da60baae0824f2cde95b0330b56c0553439f0673",
+
"sha256:c68ea4d3ba1705da1e0d85da6684ac657912679a649e8868bd850d2c299cce13",
+
"sha256:e23d0cc5299223dcc37885dae624f382297717e459ea24053709675a976a3e19"
],
"index": "pypi",
- "version": "==3.13"
+ "version": "==5.1"
},
"reportlab": {
"hashes": [
@@ -996,7 +996,7 @@
"sha256:9d98697f088eb1b0fa451391f91afb5e3ebde16bbdb272819fd091151fda4f1a",
"sha256:f0b0e4eba956de51238e17573b7087e852dfe9854afd2e9c873f73fc0ca0a6dd"
],
- "markers": "python_version < '3.4'",
+ "markers": "python_version == '2.7'",
"version": "==1.5"
},
"backports.ssl-match-hostname": {
@@ -1139,7 +1139,7 @@
"sha256:330cc27ccbf7f1e992e69fef78261dc7c6569012cf397db8d3de0234e6c937ca",
"sha256:a7bb0f2cf3a3fd1ab2732cb49eba4252c2af4240442415b4abce3b87022a8f50"
],
- "markers": "python_version < '3.0'",
+ "markers": "python_version < '3.3'",
"version": "==1.0.2"
},
"futures": {
@@ -1304,10 +1304,10 @@
},
"pdbpp": {
"hashes": [
-
"sha256:565a4ee4b54bd73310058ce439e245230c587774813e394c902a214c3e693d24"
+
"sha256:3936ed6c145d9bebad9f532a20796d7022fc251ad6b041adc56b67839efd5173"
],
"index": "pypi",
- "version": "==0.9.14"
+ "version": "==0.9.15"
},
"pluggy": {
"hashes": [
@@ -1410,20 +1410,20 @@
},
"pyyaml": {
"hashes": [
-
"sha256:3d7da3009c0f3e783b2c873687652d83b1bbfd5c88e9813fb7e5b03c0dd3108b",
-
"sha256:3ef3092145e9b70e3ddd2c7ad59bdd0252a94dfe3949721633e41344de00a6bf",
-
"sha256:40c71b8e076d0550b2e6380bada1f1cd1017b882f7e16f09a65be98e017f211a",
-
"sha256:558dd60b890ba8fd982e05941927a3911dc409a63dcb8b634feaa0cda69330d3",
-
"sha256:a7c28b45d9f99102fa092bb213aa12e0aaf9a6a1f5e395d36166639c1f96c3a1",
-
"sha256:aa7dd4a6a427aed7df6fb7f08a580d68d9b118d90310374716ae90b710280af1",
-
"sha256:bc558586e6045763782014934bfaf39d48b8ae85a2713117d16c39864085c613",
-
"sha256:d46d7982b62e0729ad0175a9bc7e10a566fc07b224d2c79fafb5e032727eaa04",
-
"sha256:d5eef459e30b09f5a098b9cea68bebfeb268697f78d647bd255a085371ac7f3f",
-
"sha256:e01d3203230e1786cd91ccfdc8f8454c8069c91bee3962ad93b87a4b2860f537",
-
"sha256:e170a9e6fcfd19021dd29845af83bb79236068bf5fd4df3327c1be18182b2531"
+
"sha256:1adecc22f88d38052fb787d959f003811ca858b799590a5eaa70e63dca50308c",
+
"sha256:436bc774ecf7c103814098159fbb84c2715d25980175292c648f2da143909f95",
+
"sha256:460a5a4248763f6f37ea225d19d5c205677d8d525f6a83357ca622ed541830c2",
+
"sha256:5a22a9c84653debfbf198d02fe592c176ea548cccce47553f35f466e15cf2fd4",
+
"sha256:7a5d3f26b89d688db27822343dfa25c599627bc92093e788956372285c6298ad",
+
"sha256:9372b04a02080752d9e6f990179a4ab840227c6e2ce15b95e1278456664cf2ba",
+
"sha256:a5dcbebee834eaddf3fa7366316b880ff4062e4bcc9787b78c7fbb4a26ff2dd1",
+
"sha256:aee5bab92a176e7cd034e57f46e9df9a9862a71f8f37cad167c6fc74c65f5b4e",
+
"sha256:c51f642898c0bacd335fc119da60baae0824f2cde95b0330b56c0553439f0673",
+
"sha256:c68ea4d3ba1705da1e0d85da6684ac657912679a649e8868bd850d2c299cce13",
+
"sha256:e23d0cc5299223dcc37885dae624f382297717e459ea24053709675a976a3e19"
],
"index": "pypi",
- "version": "==3.13"
+ "version": "==5.1"
},
"requests": {
"extras": [
diff --git a/omd/packages/python-modules/python-modules.make
b/omd/packages/python-modules/python-modules.make
index f5666ed..ac8ad90 100644
--- a/omd/packages/python-modules/python-modules.make
+++ b/omd/packages/python-modules/python-modules.make
@@ -188,7 +188,7 @@ PYTHON_MODULES_LIST += boto3-1.9.42.tar.gz
PYTHON_MODULES_LIST += cachetools-3.0.0.tar.gz
PYTHON_MODULES_LIST += rsa-4.0.tar.gz
PYTHON_MODULES_LIST += google-auth-1.6.1.tar.gz
-PYTHON_MODULES_LIST += PyYAML-3.13.tar.gz
+PYTHON_MODULES_LIST += PyYAML-5.1.tar.gz
PYTHON_MODULES_LIST += websocket_client-0.54.0.tar.gz
PYTHON_MODULES_LIST += kubernetes-8.0.0.tar.gz
# Added for jira notification script
diff --git a/omd/packages/python-modules/src/PyYAML-3.13.tar.gz
b/omd/packages/python-modules/src/PyYAML-3.13.tar.gz
deleted file mode 100644
index f62eccd..0000000
Binary files a/omd/packages/python-modules/src/PyYAML-3.13.tar.gz and /dev/null differ
diff --git a/omd/packages/python-modules/src/PyYAML-5.1.tar.gz
b/omd/packages/python-modules/src/PyYAML-5.1.tar.gz
new file mode 100644
index 0000000..91ba249
Binary files /dev/null and b/omd/packages/python-modules/src/PyYAML-5.1.tar.gz differ