#28009 (Apr 16, 2026, 9:09:32 AM)

Started 8 hr 34 min ago

Took 1.9 sec on build4-deb12build-ansible

Started by upstream project gerrit-pysim build number 3058
originally caused by:

Triggered by Gerrit: https://gerrit.osmocom.org/c/pysim/+/42626 in silent mode.

This run spent:

14 sec waiting;
1.9 sec build duration;
16 sec total from scheduled to completion.

Revision: a05bf3388e0b1e0b9357d39340e162a9dd8a32ca
Repository: $GERRIT_REPO_URL

master

requirements: ensure safe version of PyYAML >= 5.4 (CVE-2020-1747)

PyYAML versions 5.1–5.3.1 are vulnerable to CVE-2020-1747, which allows
arbitrary code execution through yaml.FullLoader. While PyYAML 5.4+
patches this, the dependency specification (pyyaml >= 5.1) doesn't
guarantee a safe version. Let's increase the requirement to version
5.4 to ensure a safe version of is used.

This patch is based on suggestions from:
"YanTong C <chyeyantong03@gmail.com>"

Change-Id: I901c76c59e9c1bab030eab81038e04a475b32510

pmaier@sysmocom.de at 1:29 PM 4/15/26

#28009 (Apr 16, 2026, 9:09:32 AM)

#28009 (Apr 16, 2026, 9:09:32 AM)