summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorPeter Marko <peter.marko@siemens.com>2026-04-12 17:37:04 +0200
committerAnuj Mittal <anuj.mittal@oss.qualcomm.com>2026-04-15 14:12:18 +0530
commit0ef4a2ecee12e2145c868ab7c049c5298de9e02d (patch)
tree21e186303905f8113b4fc98960e043737715b820
parenta1b14b7a3aadd2ad6b117bdafa505928edadfeb7 (diff)
downloadmeta-openembedded-0ef4a2ecee12e2145c868ab7c049c5298de9e02d.tar.gz
grpc: set status for CVE-2026-33186
CPE per NVD report is for "go", while this is C++ component: * cpe:2.3:a:grpc:grpc:*:*:*:*:*:go:*:* Also the link to adisory within NVD report says "grpc-go": * https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
-rw-r--r--meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb2
1 files changed, 2 insertions, 0 deletions
diff --git a/meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb b/meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb
index 1594353ef5..c6bffe4f95 100644
--- a/meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb
+++ b/meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb
@@ -67,3 +67,5 @@ FILES:${PN}-compiler += " \
67 ${bindir} \ 67 ${bindir} \
68 ${libdir}/libgrpc_plugin_support${SOLIBS} \ 68 ${libdir}/libgrpc_plugin_support${SOLIBS} \
69 " 69 "
70
71CVE_STATUS[CVE-2026-33186] = "cpe-incorrect: this CVE is for golang version of grpc"