summaryrefslogtreecommitdiffstats
path: root/meta/recipes-core/zlib
diff options
context:
space:
mode:
authorPeter Marko <peter.marko@siemens.com>2024-01-13 19:04:04 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2024-01-23 11:53:41 +0000
commit4a6d2cfb8aef84170eda5977fcb6233d25f42b42 (patch)
tree9fdbd784032fa4c777aa7e14fe3b7ca54eb8db25 /meta/recipes-core/zlib
parent7ca6bd89776f38b7af5e5e9002c4e82b06c4e995 (diff)
downloadpoky-4a6d2cfb8aef84170eda5977fcb6233d25f42b42.tar.gz
zlib: ignore CVE-2023-6992
This CVE is for iCPE cloudflare:zlib. Alternative to ignoring would be to limit CVE_PRODUCT, but historic CVEs already have two - gnu:zlib and zlib:zlib. So limiting it could miss future CVEs. (From OE-Core rev: 9f953a1cd832f03f0b3666168addf45fd4fc8d14) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-core/zlib')
-rw-r--r--meta/recipes-core/zlib/zlib_1.3.bb1
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/zlib/zlib_1.3.bb b/meta/recipes-core/zlib/zlib_1.3.bb
index 1ed18172fa..ede75f90bd 100644
--- a/meta/recipes-core/zlib/zlib_1.3.bb
+++ b/meta/recipes-core/zlib/zlib_1.3.bb
@@ -47,3 +47,4 @@ do_install_ptest() {
47BBCLASSEXTEND = "native nativesdk" 47BBCLASSEXTEND = "native nativesdk"
48 48
49CVE_STATUS[CVE-2023-45853] = "not-applicable-config: we don't build minizip" 49CVE_STATUS[CVE-2023-45853] = "not-applicable-config: we don't build minizip"
50CVE_STATUS[CVE-2023-6992] = "cpe-incorrect: this CVE is for cloudflare zlib"
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-05-21 17:40:26 +0000