diff options
author | Peter Marko <peter.marko@siemens.com> | 2023-10-31 19:09:55 +0100 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2023-11-17 06:00:32 -1000 |
commit | be04eefcaf2e28270fecc370d382c7fb82ec9372 (patch) | |
tree | 359882678a0bf5c06ebb55a2159320cdd5f74ca0 /meta | |
parent | 77214fc5d48d35968ad5a153bb7d2cd665f81a41 (diff) | |
download | poky-be04eefcaf2e28270fecc370d382c7fb82ec9372.tar.gz |
glibc: ignore CVE-2023-4527
This vulnerability was introduced in 2.36, so 2.31 is not vulnerable.
(From OE-Core rev: 3471922461627c0f0487feb09cfdc4cfeeb3f3ca)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'meta')
-rw-r--r-- | meta/recipes-core/glibc/glibc_2.31.bb | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/meta/recipes-core/glibc/glibc_2.31.bb b/meta/recipes-core/glibc/glibc_2.31.bb index 1862586749..8298088323 100644 --- a/meta/recipes-core/glibc/glibc_2.31.bb +++ b/meta/recipes-core/glibc/glibc_2.31.bb | |||
@@ -29,6 +29,13 @@ CVE_CHECK_WHITELIST += "CVE-2019-1010025" | |||
29 | # https://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/?h=dunfell&id=e1e89ff7d75c3d2223f9e3bd875b9b0c5e15836b | 29 | # https://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/?h=dunfell&id=e1e89ff7d75c3d2223f9e3bd875b9b0c5e15836b |
30 | CVE_CHECK_WHITELIST += "CVE-2021-35942" | 30 | CVE_CHECK_WHITELIST += "CVE-2021-35942" |
31 | 31 | ||
32 | # glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-4527 | ||
33 | # This vulnerability was introduced in 2.36 by commit | ||
34 | # f282cdbe7f436c75864e5640a409a10485e9abb2 resolv: Implement no-aaaa stub resolver option | ||
35 | # so our version is not yet vulnerable | ||
36 | # See https://sourceware.org/bugzilla/show_bug.cgi?id=30842 | ||
37 | CVE_CHECK_WHITELIST += "CVE-2023-4527" | ||
38 | |||
32 | DEPENDS += "gperf-native bison-native make-native" | 39 | DEPENDS += "gperf-native bison-native make-native" |
33 | 40 | ||
34 | NATIVESDKFIXES ?= "" | 41 | NATIVESDKFIXES ?= "" |