summaryrefslogtreecommitdiffstats
path: root/meta-networking
diff options
context:
space:
mode:
authorAnkur Tyagi <ankur.tyagi85@gmail.com>2025-10-18 00:56:51 +1300
committerAnuj Mittal <anuj.mittal@intel.com>2025-10-30 14:43:36 +0800
commit1c65291a77d84b10a73868da2a39443b46ca3025 (patch)
tree050918c78a201ac9aa4ab1e3a07b919f78722319 /meta-networking
parent580609b6d5f3bca9ae3d3e88bb1b98afd5b282a6 (diff)
downloadmeta-openembedded-1c65291a77d84b10a73868da2a39443b46ca3025.tar.gz
ndpi: ignore CVE-2025-25066
Details https://nvd.nist.gov/vuln/detail/CVE-2025-25066 CVE was fixed by [1] but the change [2] which introduced CVE was not present this version (4.2). $ git tag --no-contains b9348e9 | grep 4.2 4.2 [1] https://github.com/ntop/nDPI/commit/678697b5eb6c3caa5dd5f8cccfe9eed8d13b94bb [2] https://github.com/ntop/nDPI/commit/b9348e9d6e0e754c4b17661c643ca258f1540ca1 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Diffstat (limited to 'meta-networking')
-rw-r--r--meta-networking/recipes-support/ntopng/ndpi_4.2.bb2
1 files changed, 2 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/ntopng/ndpi_4.2.bb b/meta-networking/recipes-support/ntopng/ndpi_4.2.bb
index 13c3398c2b..d768f85d31 100644
--- a/meta-networking/recipes-support/ntopng/ndpi_4.2.bb
+++ b/meta-networking/recipes-support/ntopng/ndpi_4.2.bb
@@ -26,3 +26,5 @@ do_configure:prepend() {
26EXTRA_OEMAKE = " \ 26EXTRA_OEMAKE = " \
27 libdir=${libdir} \ 27 libdir=${libdir} \
28" 28"
29
30CVE_STATUS[CVE-2025-25066] = "cpe-incorrect: Current version (4.2) is not affected."