diff options
| author | Andrej Valek <andrej.valek@siemens.com> | 2023-07-20 09:19:50 +0200 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-07-21 11:52:26 +0100 |
| commit | c15e506a4674e558922c5a75512ca2b5c296cd44 (patch) | |
| tree | a0cc1ebf9daca61304185ed901596e31f4029658 /meta/recipes-extended/cups | |
| parent | 7e18a90d35a62cd6894385a9dab549a594d5f11e (diff) | |
| download | poky-c15e506a4674e558922c5a75512ca2b5c296cd44.tar.gz | |
cve_check: convert CVE_CHECK_IGNORE to CVE_STATUS
- Try to add convert and apply statuses for old CVEs
- Drop some obsolete ignores, while they are not relevant for current
version
(From OE-Core rev: 1634ed4048cf56788cd5c2c1bdc979b70afcdcd7)
Signed-off-by: Andrej Valek <andrej.valek@siemens.com>
Reviewed-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-extended/cups')
| -rw-r--r-- | meta/recipes-extended/cups/cups.inc | 17 |
1 files changed, 5 insertions, 12 deletions
diff --git a/meta/recipes-extended/cups/cups.inc b/meta/recipes-extended/cups/cups.inc index da320b1085..36feaddcf8 100644 --- a/meta/recipes-extended/cups/cups.inc +++ b/meta/recipes-extended/cups/cups.inc | |||
| @@ -19,14 +19,11 @@ SRC_URI = "${GITHUB_BASE_URI}/download/v${PV}/cups-${PV}-source.tar.gz \ | |||
| 19 | 19 | ||
| 20 | GITHUB_BASE_URI = "https://github.com/OpenPrinting/cups/releases" | 20 | GITHUB_BASE_URI = "https://github.com/OpenPrinting/cups/releases" |
| 21 | 21 | ||
| 22 | # Issue only applies to MacOS | 22 | CVE_STATUS[CVE-2008-1033] = "not-applicable-platform: Issue only applies to MacOS" |
| 23 | CVE_CHECK_IGNORE += "CVE-2008-1033" | 23 | CVE_STATUS[CVE-2009-0032] = "cpe-incorrect: Issue affects pdfdistiller plugin used with but not part of cups" |
| 24 | # Issue affects pdfdistiller plugin used with but not part of cups | 24 | CVE_STATUS[CVE-2018-6553] = "not-applicable-platform: This is an Ubuntu only issue" |
| 25 | CVE_CHECK_IGNORE += "CVE-2009-0032" | 25 | CVE_STATUS[CVE-2022-26691] = "fixed-version: This is fixed in 2.4.2 but the cve-check class still reports it" |
| 26 | # This is an Ubuntu only issue. | 26 | CVE_STATUS[CVE-2021-25317] = "not-applicable-config: This concerns /var/log/cups having lp ownership, our /var/log/cups is root:root, so this doesn't apply." |
| 27 | CVE_CHECK_IGNORE += "CVE-2018-6553" | ||
| 28 | # This is fixed in 2.4.2 but the cve-check class still reports it | ||
| 29 | CVE_CHECK_IGNORE += "CVE-2022-26691" | ||
| 30 | 27 | ||
| 31 | LEAD_SONAME = "libcupsdriver.so" | 28 | LEAD_SONAME = "libcupsdriver.so" |
| 32 | 29 | ||
| @@ -114,7 +111,3 @@ SYSROOT_PREPROCESS_FUNCS += "cups_sysroot_preprocess" | |||
| 114 | cups_sysroot_preprocess () { | 111 | cups_sysroot_preprocess () { |
| 115 | sed -i ${SYSROOT_DESTDIR}${bindir_crossscripts}/cups-config -e 's:cups_datadir=.*:cups_datadir=${datadir}/cups:' -e 's:cups_serverbin=.*:cups_serverbin=${libexecdir}/cups:' | 112 | sed -i ${SYSROOT_DESTDIR}${bindir_crossscripts}/cups-config -e 's:cups_datadir=.*:cups_datadir=${datadir}/cups:' -e 's:cups_serverbin=.*:cups_serverbin=${libexecdir}/cups:' |
| 116 | } | 113 | } |
| 117 | |||
| 118 | # -25317 concerns /var/log/cups having lp ownership. Our /var/log/cups is | ||
| 119 | # root:root, so this doesn't apply. | ||
| 120 | CVE_CHECK_IGNORE += "CVE-2021-25317" | ||