diff options
| author | Ross Burton <ross.burton@arm.com> | 2023-08-07 17:56:56 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-08-09 21:48:11 +0100 |
| commit | e6eb5402362bd4b3743e479a0ff21a67739f8873 (patch) | |
| tree | f03835ea43b1d025c6752645ead8ccf514687c98 /meta/recipes-extended | |
| parent | 4adb1956198ff8d717b2175953762e5b17852eda (diff) | |
| download | poky-e6eb5402362bd4b3743e479a0ff21a67739f8873.tar.gz | |
ghostscript: ignore CVE-2023-38560
The ghostscript recipe isn't vulnerable to CVE-2023-38560, as this is an
issue in the GhostPCL release, whereas this recipe is the Ghostscript
release.
(From OE-Core rev: f82a13beabc784da1455f86064ce9f0f225b6e5a)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-extended')
| -rw-r--r-- | meta/recipes-extended/ghostscript/ghostscript_10.01.2.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-extended/ghostscript/ghostscript_10.01.2.bb b/meta/recipes-extended/ghostscript/ghostscript_10.01.2.bb index 6b5f443db0..0ddf708f93 100644 --- a/meta/recipes-extended/ghostscript/ghostscript_10.01.2.bb +++ b/meta/recipes-extended/ghostscript/ghostscript_10.01.2.bb | |||
| @@ -67,3 +67,5 @@ COMPATIBLE_HOST = "^(?!arc).*" | |||
| 67 | 67 | ||
| 68 | # some entries in NVD uses gpl_ghostscript | 68 | # some entries in NVD uses gpl_ghostscript |
| 69 | CVE_PRODUCT = "ghostscript gpl_ghostscript" | 69 | CVE_PRODUCT = "ghostscript gpl_ghostscript" |
| 70 | |||
| 71 | CVE_STATUS[CVE-2023-38560] = "not-applicable-config: PCL isn't part of the Ghostscript release" | ||