tigervnc: ignore CVE-2023-6377 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Gyorgy Sarvari <skandigraun@gmail.com>	2025-12-29 15:51:50 +0100
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-06 18:07:50 +0530
commit	dc575822b2b6c1c247d1ceeadad898a235230f59 (patch)
tree	60634603d9dd3cdeaec6b2646b505d06cca2c71f /meta-python/recipes-devtools/python/python3-starlette
parent	0be619859e3b3e5e95c0630b6d36519d2184a6c6 (diff)
download	meta-openembedded-dc575822b2b6c1c247d1ceeadad898a235230f59.tar.gz

tigervnc: ignore CVE-2023-6377

Details: https://nvd.nist.gov/vuln/detail/CVE-2023-6377 TigerVNC compiles its own xserver, this is why this CVE is associated with it - despite the vulnerability being in xserver. The vulnerability was fixed by [1] (from the nvd report), which has been backported[2] to the xserver version used by the recipe - so ignore the CVE, since it's patched already. [1]: https://gitlab.freedesktop.org/xorg/xserver/-/commit/0c1a93d319558fe3ab2d94f51d174b4f93810afd [2]: https://gitlab.freedesktop.org/xorg/xserver/-/commit/a7bda3080d2b44eae668cdcec7a93095385b9652 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit f691f2178b15eec22f09a1c17b9945fad4e330e6) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-starlette')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: