zlib: ignore CVE-2023-45853

This CVE relates to a bug in the minizip tool, but we don't build that. (From OE-Core rev: 5b06913e5883c35390c87f6660a0578c73ff4ddd) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Ross Burton <ross.burton@arm.com> 2023-11-03 13:28:07 +0000
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2023-11-03 13:49:23 +0000
commit: 1ab33843ef7bc19b6648cf8757b23f4cf434cca1 (patch)
tree: 42ec91be4e5ad3987c3612e39d77376cc89b077f /meta
parent: 0542c12e893d774f33feb776aea7a6aa6746960c (diff)
download: poky-1ab33843ef7bc19b6648cf8757b23f4cf434cca1.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-core/zlib/zlib_1.3.bb b/meta/recipes-core/zlib/zlib_1.3.bb
index c8fd855ee6..1ed18172fa 100644
--- a/meta/recipes-core/zlib/zlib_1.3.bb
+++ b/meta/recipes-core/zlib/zlib_1.3.bb
@@ -45,3 +45,5 @@ do_install_ptest() {
 }
 BBCLASSEXTEND = "native nativesdk"
+CVE_STATUS[CVE-2023-45853] = "not-applicable-config: we don't build minizip"
author	Ross Burton <ross.burton@arm.com>	2023-11-03 13:28:07 +0000
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-11-03 13:49:23 +0000
commit	1ab33843ef7bc19b6648cf8757b23f4cf434cca1 (patch)
tree	42ec91be4e5ad3987c3612e39d77376cc89b077f /meta
parent	0542c12e893d774f33feb776aea7a6aa6746960c (diff)
download	poky-1ab33843ef7bc19b6648cf8757b23f4cf434cca1.tar.gz

diff --git a/meta/recipes-core/zlib/zlib_1.3.bb b/meta/recipes-core/zlib/zlib_1.3.bb index c8fd855ee6..1ed18172fa 100644 --- a/meta/recipes-core/zlib/zlib_1.3.bb +++ b/meta/recipes-core/zlib/zlib_1.3.bb
@@ -45,3 +45,5 @@ do_install_ptest() {
45	}	45	}
46		46
47	BBCLASSEXTEND = "native nativesdk"	47	BBCLASSEXTEND = "native nativesdk"
		48
		49	CVE_STATUS[CVE-2023-45853] = "not-applicable-config: we don't build minizip"