[PATCH] sphinx: Bump urllib3 version

Simon Glass sjg at google.com
Fri Oct 6 03:41:53 CEST 2023


On Thu, 5 Oct 2023 at 10:27, Tom Rini <trini at konsulko.com> wrote:
>
> While not a direct issue for us, urllib3 before 1.26.17 is vulnerable to
> CVE-2023-43804 to bump our version up.
>
> Reported-by: GitHub dependabot
> Signed-off-by: Tom Rini <trini at konsulko.com>
> ---
> Cc: Heinrich Schuchardt <xypron.glpk at gmx.de>
> ---
>  doc/sphinx/requirements.txt | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)

Reviewed-by: Simon Glass <sjg at chromium.org>


More information about the U-Boot mailing list