diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2025-10-07 11:23:42 +0200 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2025-10-08 18:46:01 -0700 |
| commit | 8f1269507ad95d56aeab3cdd0c0178e194506ca8 (patch) | |
| tree | 57cd5003bb8edf49fc5b0cfe214a98ca064dd49b | |
| parent | 17ba2741724cd850eb63ad642872dec3f38f8ae9 (diff) | |
| download | meta-openembedded-8f1269507ad95d56aeab3cdd0c0178e194506ca8.tar.gz | |
redis: ignore CVE-2022-3734 and CVE-2022-0543
CVE-2022-3734 only affects Windows.
CVE-2022-0543 affects only packages that were packaged for Debian and
Debian-derivative distros.
Neither of these issues is present in upstream Redis.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
| -rw-r--r-- | meta-oe/recipes-extended/redis/redis_6.2.20.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/redis/redis_6.2.20.bb b/meta-oe/recipes-extended/redis/redis_6.2.20.bb index 175e0a9fc2..cc98781fed 100644 --- a/meta-oe/recipes-extended/redis/redis_6.2.20.bb +++ b/meta-oe/recipes-extended/redis/redis_6.2.20.bb | |||
| @@ -21,6 +21,8 @@ SRC_URI = "http://download.redis.io/releases/${BP}.tar.gz \ | |||
| 21 | SRC_URI[sha256sum] = "7f8b8a7aed53c445a877adf9e3743cdd323518524170135a58c0702f2dba6ef4" | 21 | SRC_URI[sha256sum] = "7f8b8a7aed53c445a877adf9e3743cdd323518524170135a58c0702f2dba6ef4" |
| 22 | 22 | ||
| 23 | CVE_STATUS[CVE-2025-21605] = "cpe-incorrect: the used version already contains the fix" | 23 | CVE_STATUS[CVE-2025-21605] = "cpe-incorrect: the used version already contains the fix" |
| 24 | CVE_STATUS[CVE-2022-0543] = "not-applicable-config: the vulnerability is not present in upstream, only in Debian-packaged version" | ||
| 25 | CVE_STATUS[CVE-2022-3734] = "not-applicable-config: only affects Windows" | ||
| 24 | 26 | ||
| 25 | inherit update-rc.d systemd useradd | 27 | inherit update-rc.d systemd useradd |
| 26 | 28 | ||