openjpeg: Whitelist CVE-2020-27844 and CVE-2015-1239 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Sana Kazi <Sana.Kazi@kpit.com>	2022-05-16 12:53:23 +0530
committer	Armin Kuster <akuster808@gmail.com>	2022-05-25 19:34:39 -0700
commit	a38c92d8e9a2ff8a1753c90b5d459c212e131e52 (patch)
tree	57fd890199382bf42a55fc16cb0062200c9228ed /meta-python/recipes-devtools/python/python3-automat/0001-setup.py-remove-the-dependency-on-m2r.patch
parent	de4b76934c2012482208bfbd81fe5cc88a1a8eeb (diff)
download	meta-openembedded-a38c92d8e9a2ff8a1753c90b5d459c212e131e52.tar.gz

openjpeg: Whitelist CVE-2020-27844 and CVE-2015-1239

Whitelist CVE-2020-27844 as it is introduced by https://github.com/uclouvain/openjpeg/commit/4edb8c83374f52cd6a8f2c7c875e8ffacccb5fa5 but the contents of this patch is not present in openjpeg_2.3.1 Link: https://security-tracker.debian.org/tracker/CVE-2020-27844 Whitelist CVE-2015-1239 as the CVE description clearly states that j2k_read_ppm_v3 function in openjpeg is affected due to CVE-2015-1239 but in openjpeg_2.3.1 this function is not present. Hence, CVE-2015-1239 does not affect openjpeg_2.3.1. Signed-off-by: Sana.Kazi <Sana.Kazi@kpit.com> Signed-off-by: Sana Kazi <sanakazisk19@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-automat/0001-setup.py-remove-the-dependency-on-m2r.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: