Skip to content

Commit

Permalink
[BFN] Fix vulnerability in eeprom.py (#5333)
Browse files Browse the repository at this point in the history 
Due to https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation, yaml.load(input) is deprecated. Added a specifying parameter to fix this issue.

Signed-off-by: Petro Bratash <[email protected]>
  • Loading branch information
@bratashX @abdosi
bratashX authored and abdosi committed Sep 19, 2020
1 parent d46dc0f commit c0b47ad
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion device/barefoot/x86_64-accton_wedge100bf_32x-r0/plugins/eeprom.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,7 +82,7 @@ class board(eeprom_tlvinfo.TlvInfoDecoder):
def __init__(self, name, path, cpld_root, ro):

with open(os.path.dirname(__file__) + "/logging.conf", 'r') as f:
config_dict = yaml.load(f)
config_dict = yaml.load(f, yaml.SafeLoader)
logging.config.dictConfig(config_dict)

if not os.path.exists(os.path.dirname(EEPROM_SYMLINK)):
Expand Down

0 comments on commit c0b47ad

Please sign in to comment.