diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-02-02 17:37:10 +0100 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2026-02-04 20:53:29 -0800 |
| commit | c08c81ae29baf53b11caba0fc7015eeec3836f69 (patch) | |
| tree | 20abb4f6bda6b97cbd5f4410d5c0f73d49d0e1e1 /meta-networking/recipes-support | |
| parent | 5a74edf28bbbb328e468b81bab1d464951a4e18c (diff) | |
| download | meta-openembedded-c08c81ae29baf53b11caba0fc7015eeec3836f69.tar.gz | |
ndpi: ignore CVE-2025-25066
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-25066
The vulnerable code was introduced in version 4.12[1], and
the recipe version is not vulnerable yet. Due to this,
ignore this CVE for now, until the recipe is upgraded.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-networking/recipes-support')
| -rw-r--r-- | meta-networking/recipes-support/ntopng/ndpi_4.2.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/ntopng/ndpi_4.2.bb b/meta-networking/recipes-support/ntopng/ndpi_4.2.bb index f0175167a4..66d24e4cd8 100644 --- a/meta-networking/recipes-support/ntopng/ndpi_4.2.bb +++ b/meta-networking/recipes-support/ntopng/ndpi_4.2.bb | |||
| @@ -25,3 +25,6 @@ do_configure:prepend() { | |||
| 25 | EXTRA_OEMAKE = " \ | 25 | EXTRA_OEMAKE = " \ |
| 26 | libdir=${libdir} \ | 26 | libdir=${libdir} \ |
| 27 | " | 27 | " |
| 28 | |||
| 29 | # remove this CVE_STATUS, when the recipe is updated to 4.12 or newer | ||
| 30 | CVE_STATUS[CVE-2025-25066] = "cpe-incorrect: Version 4.2 is not vulnerable yet" | ||