tigervnc: ignore CVE-2023-6377 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Gyorgy Sarvari <skandigraun@gmail.com>	2025-12-25 17:35:09 +0100
committer	Khem Raj <raj.khem@gmail.com>	2025-12-25 11:25:58 -0800
commit	f691f2178b15eec22f09a1c17b9945fad4e330e6 (patch)
tree	ba5f79095a0600cd01034967cdd4c9fc7ead064b /meta-python/recipes-devtools/python/python3-twofish_0.3.0.bb
parent	fadb9c05709dae9e817a50e4d99093d4e2937933 (diff)
download	meta-openembedded-f691f2178b15eec22f09a1c17b9945fad4e330e6.tar.gz

tigervnc: ignore CVE-2023-6377

Details: https://nvd.nist.gov/vuln/detail/CVE-2023-6377 TigerVNC compiles its own xserver, this is why this CVE is associated with it - despite the vulnerability being in xserver. The vulnerability was fixed by [1] (from the nvd report), which has been backported[2] to the xserver version used by the recipe - so ignore the CVE, since it's patched already. [1]: https://gitlab.freedesktop.org/xorg/xserver/-/commit/0c1a93d319558fe3ab2d94f51d174b4f93810afd [2]: https://gitlab.freedesktop.org/xorg/xserver/-/commit/a7bda3080d2b44eae668cdcec7a93095385b9652 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-twofish_0.3.0.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: