diff options
Diffstat (limited to 'meta-networking/recipes-support')
4 files changed, 8 insertions, 16 deletions
diff --git a/meta-networking/recipes-support/dovecot/dovecot_2.3.20.bb b/meta-networking/recipes-support/dovecot/dovecot_2.3.20.bb index 01e060e2f5..e41dd93f5d 100644 --- a/meta-networking/recipes-support/dovecot/dovecot_2.3.20.bb +++ b/meta-networking/recipes-support/dovecot/dovecot_2.3.20.bb | |||
| @@ -71,5 +71,4 @@ FILES:${PN}-staticdev += "${libdir}/dovecot/*/*.a" | |||
| 71 | FILES:${PN}-dev += "${libdir}/dovecot/libdovecot*.so" | 71 | FILES:${PN}-dev += "${libdir}/dovecot/libdovecot*.so" |
| 72 | FILES:${PN}-dbg += "${libdir}/dovecot/*/.debug" | 72 | FILES:${PN}-dbg += "${libdir}/dovecot/*/.debug" |
| 73 | 73 | ||
| 74 | # CVE-2016-4983 affects only postinstall script on specific distribution | 74 | CVE_STATUS[CVE-2016-4983] = "not-applicable-platform: Affects only postinstall script on specific distribution." |
| 75 | CVE_CHECK_IGNORE += "CVE-2016-4983" | ||
diff --git a/meta-networking/recipes-support/ntp/ntp_4.2.8p17.bb b/meta-networking/recipes-support/ntp/ntp_4.2.8p17.bb index fba4611b99..e80ea4c149 100644 --- a/meta-networking/recipes-support/ntp/ntp_4.2.8p17.bb +++ b/meta-networking/recipes-support/ntp/ntp_4.2.8p17.bb | |||
| @@ -26,12 +26,11 @@ SRC_URI = "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-4.2/ntp-${PV}.tar.g | |||
| 26 | 26 | ||
| 27 | SRC_URI[sha256sum] = "103dd272e6a66c5b8df07dce5e9a02555fcd6f1397bdfb782237328e89d3a866" | 27 | SRC_URI[sha256sum] = "103dd272e6a66c5b8df07dce5e9a02555fcd6f1397bdfb782237328e89d3a866" |
| 28 | 28 | ||
| 29 | # CVE-2016-9312 is only for windows. | 29 | CVE_STATUS[CVE-2016-9312] = "not-applicable-platform: Issue only applies on Windows" |
| 30 | # CVE-2019-11331 is inherent to RFC 5905 and cannot be fixed without breaking compatibility | 30 | CVE_STATUS[CVE-2019-11331] = "upstream-wontfix: inherent to RFC 5905 and cannot be fixed without breaking compatibility" |
| 31 | # The other CVEs are not correctly identified because cve-check | 31 | CVE_STATUS_GROUPS += "CVE_STATUS_NTP" |
| 32 | # is not able to check the version correctly (it only checks for 4.2.8 omitting p15 that makes the difference) | 32 | CVE_STATUS_NTP[status] = "fixed-version: Yocto CVE check can not handle 'p' in ntp version" |
| 33 | CVE_CHECK_IGNORE += "\ | 33 | CVE_STATUS_NTP = " \ |
| 34 | CVE-2016-9312 \ | ||
| 35 | CVE-2015-5146 \ | 34 | CVE-2015-5146 \ |
| 36 | CVE-2015-5300 \ | 35 | CVE-2015-5300 \ |
| 37 | CVE-2015-7975 \ | 36 | CVE-2015-7975 \ |
| @@ -51,7 +50,6 @@ CVE_CHECK_IGNORE += "\ | |||
| 51 | CVE-2016-7433 \ | 50 | CVE-2016-7433 \ |
| 52 | CVE-2016-9310 \ | 51 | CVE-2016-9310 \ |
| 53 | CVE-2016-9311 \ | 52 | CVE-2016-9311 \ |
| 54 | CVE-2019-11331 \ | ||
| 55 | " | 53 | " |
| 56 | 54 | ||
| 57 | 55 | ||
diff --git a/meta-networking/recipes-support/openvpn/openvpn_2.6.3.bb b/meta-networking/recipes-support/openvpn/openvpn_2.6.3.bb index 76bce7db53..a5fc158749 100644 --- a/meta-networking/recipes-support/openvpn/openvpn_2.6.3.bb +++ b/meta-networking/recipes-support/openvpn/openvpn_2.6.3.bb | |||
| @@ -16,8 +16,7 @@ UPSTREAM_CHECK_URI = "https://openvpn.net/community-downloads" | |||
| 16 | 16 | ||
| 17 | SRC_URI[sha256sum] = "13b207a376d8880507c74ff78aabc3778a9da47c89f1e247dcee3c7237138ff6" | 17 | SRC_URI[sha256sum] = "13b207a376d8880507c74ff78aabc3778a9da47c89f1e247dcee3c7237138ff6" |
| 18 | 18 | ||
| 19 | # CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client, not for openvpn. | 19 | CVE_STATUS[CVE-2020-27569] = "not-applicable-config: Applies only Aviatrix OpenVPN client, not openvpn" |
| 20 | CVE_CHECK_IGNORE += "CVE-2020-7224 CVE-2020-27569" | ||
| 21 | 20 | ||
| 22 | INITSCRIPT_PACKAGES = "${PN}" | 21 | INITSCRIPT_PACKAGES = "${PN}" |
| 23 | INITSCRIPT_NAME:${PN} = "openvpn" | 22 | INITSCRIPT_NAME:${PN} = "openvpn" |
diff --git a/meta-networking/recipes-support/spice/spice_git.bb b/meta-networking/recipes-support/spice/spice_git.bb index b3e687476b..5732f509b1 100644 --- a/meta-networking/recipes-support/spice/spice_git.bb +++ b/meta-networking/recipes-support/spice/spice_git.bb | |||
| @@ -30,11 +30,7 @@ SRC_URI = " \ | |||
| 30 | 30 | ||
| 31 | S = "${WORKDIR}/git" | 31 | S = "${WORKDIR}/git" |
| 32 | 32 | ||
| 33 | CVE_CHECK_IGNORE += "\ | 33 | CVE_STATUS[CVE-2018-10893] = "fixed-version: patched already, caused by inaccurate CPE in the NVD database." |
| 34 | CVE-2016-0749 \ | ||
| 35 | CVE-2016-2150 \ | ||
| 36 | CVE-2018-10893 \ | ||
| 37 | " | ||
| 38 | 34 | ||
| 39 | inherit autotools gettext python3native python3-dir pkgconfig | 35 | inherit autotools gettext python3native python3-dir pkgconfig |
| 40 | 36 | ||
