diff options
| author | Adrian Bunk <bunk@stusta.de> | 2020-01-17 18:58:18 +0200 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2020-01-28 11:15:02 +0000 |
| commit | 7a8ac5c1c95a77d8e7177c5ca52e4635d374e160 (patch) | |
| tree | 6d30d98b2a72d1d53f8507423fb8fa69a8c7ad26 | |
| parent | cd1d971e25cf882054396ea558b1faa6a8a00c02 (diff) | |
| download | poky-7a8ac5c1c95a77d8e7177c5ca52e4635d374e160.tar.gz | |
openssl: Whitelist CVE-2019-0190
This is only a problem with older Apache versions.
(From OE-Core rev: 8e76d2508da411a1a67f3226465c83fec85dfe97)
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
| -rw-r--r-- | meta/recipes-connectivity/openssl/openssl_1.1.1d.bb | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb b/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb index 0e65f333e2..af2217bd15 100644 --- a/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb +++ b/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb | |||
| @@ -205,3 +205,7 @@ RCONFLICTS_openssl-conf = "openssl10-conf" | |||
| 205 | BBCLASSEXTEND = "native nativesdk" | 205 | BBCLASSEXTEND = "native nativesdk" |
| 206 | 206 | ||
| 207 | CVE_PRODUCT = "openssl:openssl" | 207 | CVE_PRODUCT = "openssl:openssl" |
| 208 | |||
| 209 | # Only affects OpenSSL >= 1.1.1 in combination with Apache < 2.4.37 | ||
| 210 | # Apache in meta-webserver is already recent enough | ||
| 211 | CVE_CHECK_WHITELIST += "CVE-2019-0190" | ||