Re: [PATCH] sphinx: Bump urllib3 version

Simon Glass Thu, 05 Oct 2023 18:42:21 -0700

On Thu, 5 Oct 2023 at 10:27, Tom Rini <tr...@konsulko.com> wrote:
>
> While not a direct issue for us, urllib3 before 1.26.17 is vulnerable to
> CVE-2023-43804 to bump our version up.
>
> Reported-by: GitHub dependabot
> Signed-off-by: Tom Rini <tr...@konsulko.com>
> ---
> Cc: Heinrich Schuchardt <xypron.g...@gmx.de>
> ---
>  doc/sphinx/requirements.txt | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)


Reviewed-by: Simon Glass <s...@chromium.org>

Re: [PATCH] sphinx: Bump urllib3 version

Reply via email to