Skip to content
Snippets Groups Projects
Select Git revision
  • master-next
  • scarthgap
  • kirkstone
  • walnascar
  • master
  • styhead
  • dunfell
  • nanbield
  • mickledore
  • langdale
  • mickledore-next
  • honister
  • gatesgarth
  • hardknott
  • thud
  • warrior
  • zeus
  • pyro
  • sumo
  • rocko
  • yocto-5.1.4
  • styhead-5.1.4
  • yocto-5.0.8
  • scarthgap-5.0.8
  • 5.2_M3
  • yocto-5.1.3
  • styhead-5.1.3
  • yocto-4.0.25
  • kirkstone-4.0.25
  • yocto-5.0.7
  • scarthgap-5.0.7
  • 5.2_M2
  • yocto-4.0.24
  • kirkstone-4.0.24
  • yocto-5.1.2
  • styhead-5.1.2
  • 5.2_M1
  • yocto-5.0.6
  • scarthgap-5.0.6
  • styhead-5.1.1
40 results
Blame Permalink
  • Soumya Sambu's avatar
    cc7068b9
    python3-certifi: Fix CVE-2024-39689 · cc7068b9
    Soumya Sambu authored 
    Certifi is a curated collection of Root Certificates for validating the
trustworthiness of SSL certificates while verifying the identity of TLS
hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized
root certificates from `GLOBALTRUST`. Certifi 2024.07.04 removes root
certificates from `GLOBALTRUST` from the root store. These are in the
process of being removed from Mozilla's trust store. `GLOBALTRUST`'s root
certificates are being removed pursuant to an investigation which
identified "long-running and unresolved compliance issues."Certifi is a
curated collection of Root Certificates for validating the trustworthiness
of SSL certificates while verifying the identity of TLS hosts. Certifi
starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates
from `GLOBALTRUST`. Certifi 2024.07.04 removes root certificates from
`GLOBALTRUST` from the root store. These are in the process of being removed
from Mozilla's trust store. `GLOBALTRUST`'s root certificates are being
removed pursuant to an investigation which identified "long-running and
unresolved compliance issues."

References:
https://nvd.nist.gov/vuln/detail/CVE-2024-39689

Upstream-patch:
https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463



(From OE-Core rev: 96c1e12dc6cb4c321a09a6ddcc4c9f27c30b4564)

Signed-off-by: default avatarSoumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: default avatarSteve Sakoman <steve@sakoman.com>
    cc7068b9
    History
    python3-certifi: Fix CVE-2024-39689
    Soumya Sambu authored 
    Certifi is a curated collection of Root Certificates for validating the
trustworthiness of SSL certificates while verifying the identity of TLS
hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized
root certificates from `GLOBALTRUST`. Certifi 2024.07.04 removes root
certificates from `GLOBALTRUST` from the root store. These are in the
process of being removed from Mozilla's trust store. `GLOBALTRUST`'s root
certificates are being removed pursuant to an investigation which
identified "long-running and unresolved compliance issues."Certifi is a
curated collection of Root Certificates for validating the trustworthiness
of SSL certificates while verifying the identity of TLS hosts. Certifi
starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates
from `GLOBALTRUST`. Certifi 2024.07.04 removes root certificates from
`GLOBALTRUST` from the root store. These are in the process of being removed
from Mozilla's trust store. `GLOBALTRUST`'s root certificates are being
removed pursuant to an investigation which identified "long-running and
unresolved compliance issues."

References:
https://nvd.nist.gov/vuln/detail/CVE-2024-39689

Upstream-patch:
https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463



(From OE-Core rev: 96c1e12dc6cb4c321a09a6ddcc4c9f27c30b4564)

Signed-off-by: default avatarSoumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: default avatarSteve Sakoman <steve@sakoman.com>
Code owners
Assign users and groups as approvers for specific file changes. Learn more.