id3lib: mark CVE-2007-4460 as fixed - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Peter Marko <peter.marko@siemens.com>	2025-10-27 15:15:54 +0100
committer	Gyorgy Sarvari <skandigraun@gmail.com>	2025-10-27 18:08:19 +0100
commit	6ca1fde08bd5cf58e147d42dc0e044191fb34d04 (patch)
tree	df12a7deff3dea6bbf87bf84024408fdbafacafd /meta-python/recipes-devtools/python/python3-cerberus_1.3.4.bb
parent	12a04da1b8e44b9a148cd023b2c68d5705282716 (diff)
download	meta-openembedded-6ca1fde08bd5cf58e147d42dc0e044191fb34d04.tar.gz

id3lib: mark CVE-2007-4460 as fixed

This is fixed in id3lib3.8.3_3.8.3-16.2.debian.tar.xz patch included in SRC_URI. Version 3.8.3-7 contains patch for this CVE, we use 3.8.3-16.2. This can be verified by checking the debian/changelog within this patch or diffing [1] and [2] and verifying that this can be reverse-applied. [1] https://snapshot.debian.org/archive/debian/20070819T000000Z/pool/main/i/id3lib3.8.3/id3lib3.8.3_3.8.3-6.diff.gz [2] https://snapshot.debian.org/archive/debian/20070819T000000Z/pool/main/i/id3lib3.8.3/id3lib3.8.3_3.8.3-7.diff.gz Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 9fff0040f1694b09c6c68cf59615f42d801d62f5) Adapted to Kirkstone (CVE_STATUS -> CVE_CHECK_IGNORE) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-cerberus_1.3.4.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: