From ea9013a484520cec403e4daf3adb55fb690ad4da Mon Sep 17 00:00:00 2001
From: Yogesh Tyagi <yogesh.tyagi@intel.com>
Date: Mon, 5 Sep 2022 12:20:08 +0800
Subject: dpdk: ignore CVE-2021-3839

This is fixed in 21.11.1 but the CPE data in NVD is incomplete.

Signed-off-by: Yogesh Tyagi <yogesh.tyagi@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
---
 recipes-extended/dpdk/dpdk_21.11.1.bb | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/recipes-extended/dpdk/dpdk_21.11.1.bb b/recipes-extended/dpdk/dpdk_21.11.1.bb
index a54fc85..0b7dd75 100644
--- a/recipes-extended/dpdk/dpdk_21.11.1.bb
+++ b/recipes-extended/dpdk/dpdk_21.11.1.bb
@@ -10,6 +10,12 @@ BRANCH = "21.11"
 SRCREV = "fcd039e4663bf2b595d7af3a8175a3e0bc09b367"
 S = "${WORKDIR}/git"
 
+# CVE-2021-3839 has been fixed by commit 4c40d30d2b in 21.11.1
+# NVD database is incomplete
+CVE_CHECK_IGNORE += "\
+    CVE-2021-3839 \
+"
+
 # kernel module is provide by dpdk-module recipe, so disable here
 EXTRA_OEMESON = " -Denable_kmods=false \
                 -Dexamples=all \
-- 
cgit v1.2.3-54-g00ecf