minio: ignore irrelevant CVEs

The minio umbrella covers multiple projects. The recipe itself builds "minio client", which is a set of basic tools to query data from "minio server" - like ls, mv, find... The CVEs were files against minio server. Looking at the go mod list, this recipe doesn't use minio server even as a build dependency - so ignore the CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit df462075be855c60117af661dbce1836c652fc16) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
author: Gyorgy Sarvari <skandigraun@gmail.com> 2025-12-22 20:49:59 +0100
committer: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-06 18:07:46 +0530
commit: efde0fec54685a06a34a2117a94ffef79e413372 (patch)
tree: 3208a780747c370c3245e7c357b849fe78d1a652 /meta-oe/recipes-extended
parent: 0c577a8001d6badee69c0b6ec2c00a88881ce6b6 (diff)
download: meta-openembedded-efde0fec54685a06a34a2117a94ffef79e413372.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/minio/minio_git.bb b/meta-oe/recipes-extended/minio/minio_git.bb
index f278a728fd..511dd4d869 100644
--- a/meta-oe/recipes-extended/minio/minio_git.bb
+++ b/meta-oe/recipes-extended/minio/minio_git.bb
@@ -164,3 +164,9 @@ do_install() {
    install -d ${D}/${sbindir}
    install ${S}/src/${GO_IMPORT}/mc ${D}/${sbindir}/mc
 }
+CVE_STATUS_GROUPS += "CVE_STATUS_WRONG_CPE"
+CVE_STATUS_WRONG_CPE[status] = "cpe-incorrect: The vulnerability is in minio server, not in minio client-tools"
+CVE_STATUS_WRONG_CPE = "CVE-2018-1000538 CVE-2020-11012 CVE-2021-21287 CVE-2021-21362 \
+                        CVE-2021-21390 CVE-2021-43858 CVE-2022-35919 CVE-2023-28433 \
+                        CVE-2023-28434 CVE-2024-36107"
author	Gyorgy Sarvari <skandigraun@gmail.com>	2025-12-22 20:49:59 +0100
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-06 18:07:46 +0530
commit	efde0fec54685a06a34a2117a94ffef79e413372 (patch)
tree	3208a780747c370c3245e7c357b849fe78d1a652 /meta-oe/recipes-extended
parent	0c577a8001d6badee69c0b6ec2c00a88881ce6b6 (diff)
download	meta-openembedded-efde0fec54685a06a34a2117a94ffef79e413372.tar.gz

diff --git a/meta-oe/recipes-extended/minio/minio_git.bb b/meta-oe/recipes-extended/minio/minio_git.bb index f278a728fd..511dd4d869 100644 --- a/meta-oe/recipes-extended/minio/minio_git.bb +++ b/meta-oe/recipes-extended/minio/minio_git.bb
@@ -164,3 +164,9 @@ do_install() {
164	install -d ${D}/${sbindir}	164	install -d ${D}/${sbindir}
165	install ${S}/src/${GO_IMPORT}/mc ${D}/${sbindir}/mc	165	install ${S}/src/${GO_IMPORT}/mc ${D}/${sbindir}/mc
166	}	166	}
		167
		168	CVE_STATUS_GROUPS += "CVE_STATUS_WRONG_CPE"
		169	CVE_STATUS_WRONG_CPE[status] = "cpe-incorrect: The vulnerability is in minio server, not in minio client-tools"
		170	CVE_STATUS_WRONG_CPE = "CVE-2018-1000538 CVE-2020-11012 CVE-2021-21287 CVE-2021-21362 \
		171	CVE-2021-21390 CVE-2021-43858 CVE-2022-35919 CVE-2023-28433 \
		172	CVE-2023-28434 CVE-2024-36107"