diff options
author | Peter Marko <peter.marko@siemens.com> | 2023-04-19 23:49:55 +0200 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2023-04-26 04:03:21 -1000 |
commit | 7eb99a6fe93df4361012bcd0a9cd919950414677 (patch) | |
tree | 4f216b6992c254e4c0eb98e5d81045af816ff348 | |
parent | e8eab4241593cc93da7dd24ad7a188bbf1866413 (diff) | |
download | poky-7eb99a6fe93df4361012bcd0a9cd919950414677.tar.gz |
go: ignore CVE-2022-41716
This CVE is specific to Microsoft Windows, ignore it.
Patch fixing it (https://go-review.googlesource.com/c/go/+/446916)
also adds a redundant check to generic os/exec which
could be backported but it should not be necessary as
backport always takes a small risk to break old code.
(From OE-Core rev: ae8167754ff1c02f2d92af03de804754ea77a3e5)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
-rw-r--r-- | meta/recipes-devtools/go/go-1.17.13.inc | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-devtools/go/go-1.17.13.inc b/meta/recipes-devtools/go/go-1.17.13.inc index 15d19ed124..34d58aec2f 100644 --- a/meta/recipes-devtools/go/go-1.17.13.inc +++ b/meta/recipes-devtools/go/go-1.17.13.inc | |||
@@ -34,3 +34,6 @@ SRC_URI[main.sha256sum] = "a1a48b23afb206f95e7bbaa9b898d965f90826f6f1d1fc0c1d784 | |||
34 | # fix in 1.17 onwards where we can drop this. | 34 | # fix in 1.17 onwards where we can drop this. |
35 | # https://github.com/golang/go/issues/30999#issuecomment-910470358 | 35 | # https://github.com/golang/go/issues/30999#issuecomment-910470358 |
36 | CVE_CHECK_IGNORE += "CVE-2021-29923" | 36 | CVE_CHECK_IGNORE += "CVE-2021-29923" |
37 | |||
38 | # This is specific to Microsoft Windows | ||
39 | CVE_CHECK_IGNORE += "CVE-2022-41716" | ||