summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRoss Burton <ross.burton@arm.com>2022-05-23 13:14:50 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2022-05-28 10:33:49 +0100
commit70c2ad9bca8e481470ac0a543b3ceb5b3827a303 (patch)
treeada3ecae5266af179be8ca9117032c8f61419b1c
parentbc146eeb8d8ae24a588f6e38908812ecc49b6646 (diff)
downloadpoky-70c2ad9bca8e481470ac0a543b3ceb5b3827a303.tar.gz
tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid
These issues only affect libtiff post-4.3.0 but before 4.4.0, caused by 3079627e and fixed by b4e79bfa. (From OE-Core rev: 49e93892a37d1a2af2b0a155117441e978385e4c) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r--meta/recipes-multimedia/libtiff/tiff_4.3.0.bb3
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb b/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
index 9c9108a6af..c5e964ec8c 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
@@ -28,6 +28,9 @@ UPSTREAM_CHECK_REGEX = "tiff-(?P<pver>\d+(\.\d+)+).tar"
28# Tested with check from https://security-tracker.debian.org/tracker/CVE-2015-7313 28# Tested with check from https://security-tracker.debian.org/tracker/CVE-2015-7313
29# and 4.3.0 doesn't have the issue 29# and 4.3.0 doesn't have the issue
30CVE_CHECK_IGNORE += "CVE-2015-7313" 30CVE_CHECK_IGNORE += "CVE-2015-7313"
31# These issues only affect libtiff post-4.3.0 but before 4.4.0,
32# caused by 3079627e and fixed by b4e79bfa.
33CVE_CHECK_IGNORE += "CVE-2022-1622 CVE-2022-1623"
31 34
32inherit autotools multilib_header 35inherit autotools multilib_header
33 36