cve_check: convert CVE_CHECK_IGNORE to CVE_STATUS

- Try to add convert and apply statuses for old CVEs - Drop some obsolete ignores, while they are not relevant for current version Signed-off-by: Andrej Valek <andrej.valek@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
author: Andrej Valek <andrej.valek@siemens.com> 2023-07-26 11:50:09 +0200
committer: Khem Raj <raj.khem@gmail.com> 2023-07-27 08:54:40 -0700
commit: 8af2f17a6fa8bf282c4c27054adbea1bf0873069 (patch)
tree: 22b6484379a0f3d3e2b89f958dda0fd45f2a1880 /meta-oe/recipes-extended/libimobiledevice/libplist_2.3.0.bb
parent: 4c201ede939610946847ccd4221320ed776224aa (diff)
download: meta-openembedded-8af2f17a6fa8bf282c4c27054adbea1bf0873069.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/meta-oe/recipes-extended/libimobiledevice/libplist_2.3.0.bb b/meta-oe/recipes-extended/libimobiledevice/libplist_2.3.0.bb
index 1a74dc88f..f636990f8 100644
--- a/meta-oe/recipes-extended/libimobiledevice/libplist_2.3.0.bb
+++ b/meta-oe/recipes-extended/libimobiledevice/libplist_2.3.0.bb
@@ -14,7 +14,9 @@ SRC_URI = "git://github.com/libimobiledevice/libplist;protocol=https;branch=mast
 S = "${WORKDIR}/git"
 PR = "r1"
-CVE_CHECK_IGNORE += "\
+CVE_STATUS_GROUPS += "CVE_STATUS_LIBLIST"
+CVE_STATUS_LIBLIST[status] = "fixed-version: The CPE in the NVD database doesn't reflect correctly the vulnerable versions."
+CVE_STATUS_LIBLIST = " \
    CVE-2017-5834 \
    CVE-2017-5835 \
    CVE-2017-5836 \
author	Andrej Valek <andrej.valek@siemens.com>	2023-07-26 11:50:09 +0200
committer	Khem Raj <raj.khem@gmail.com>	2023-07-27 08:54:40 -0700
commit	8af2f17a6fa8bf282c4c27054adbea1bf0873069 (patch)
tree	22b6484379a0f3d3e2b89f958dda0fd45f2a1880 /meta-oe/recipes-extended/libimobiledevice/libplist_2.3.0.bb
parent	4c201ede939610946847ccd4221320ed776224aa (diff)
download	meta-openembedded-8af2f17a6fa8bf282c4c27054adbea1bf0873069.tar.gz