curl: update CVE_STATUS for CVE-2025-5025

This CVE applies only when curl is built with wolfSSL support. Revised CVE_STATUS description to align with CVE details. Reference: https://github.com/openembedded/openembedded-core/commit/93ae0758ef35 (From OE-Core rev: fddc4dcc89a9491abdf8f5d0ea4df9a6526b1538) Signed-off-by: Vrushti Dabhi <vdabhi@cisco.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Vrushti Dabhi <vdabhi@cisco.com> 2025-08-28 02:18:06 -0700
committer: Steve Sakoman <steve@sakoman.com> 2025-09-09 09:08:09 -0700
commit: 328b35d7e32db1947bec5449a5d3651ab467115e (patch)
tree: 0d7b11cfceb6b85817dd02f6155457e55ad23a08
parent: 9ce8f26d37c2e3e0030fd1f36f5c54209c269a05 (diff)
download: poky-328b35d7e32db1947bec5449a5d3651ab467115e.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/meta/recipes-support/curl/curl_8.7.1.bb b/meta/recipes-support/curl/curl_8.7.1.bb
index a21a086f40..6845a43cd2 100644
--- a/meta/recipes-support/curl/curl_8.7.1.bb
+++ b/meta/recipes-support/curl/curl_8.7.1.bb
@@ -37,7 +37,7 @@ CVE_PRODUCT = "haxx:curl haxx:libcurl curl:curl curl:libcurl libcurl:libcurl dan
 CVE_STATUS[CVE-2024-32928] = "ignored: CURLOPT_SSL_VERIFYPEER was disabled on google cloud services causing a potential man in the middle attack"
 CVE_STATUS[CVE-2025-0725] = "not-applicable-config: gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, using zlib 1.2.0.3 or older"
-CVE_STATUS[CVE-2025-5025] = "${@bb.utils.contains('PACKAGECONFIG', 'openssl', 'not-applicable-config: build with openssl','unpatched',d)}"
+CVE_STATUS[CVE-2025-5025] = "${@bb.utils.contains('PACKAGECONFIG', 'openssl', 'not-applicable-config: applicable only with wolfssl','unpatched',d)}"
 inherit autotools pkgconfig binconfig multilib_header ptest
author	Vrushti Dabhi <vdabhi@cisco.com>	2025-08-28 02:18:06 -0700
committer	Steve Sakoman <steve@sakoman.com>	2025-09-09 09:08:09 -0700
commit	328b35d7e32db1947bec5449a5d3651ab467115e (patch)
tree	0d7b11cfceb6b85817dd02f6155457e55ad23a08
parent	9ce8f26d37c2e3e0030fd1f36f5c54209c269a05 (diff)
download	poky-328b35d7e32db1947bec5449a5d3651ab467115e.tar.gz

diff --git a/meta/recipes-support/curl/curl_8.7.1.bb b/meta/recipes-support/curl/curl_8.7.1.bb index a21a086f40..6845a43cd2 100644 --- a/meta/recipes-support/curl/curl_8.7.1.bb +++ b/meta/recipes-support/curl/curl_8.7.1.bb
@@ -37,7 +37,7 @@ CVE_PRODUCT = "haxx:curl haxx:libcurl curl:curl curl:libcurl libcurl:libcurl dan
37	CVE_STATUS[CVE-2024-32928] = "ignored: CURLOPT_SSL_VERIFYPEER was disabled on google cloud services causing a potential man in the middle attack"	37	CVE_STATUS[CVE-2024-32928] = "ignored: CURLOPT_SSL_VERIFYPEER was disabled on google cloud services causing a potential man in the middle attack"
38		38
39	CVE_STATUS[CVE-2025-0725] = "not-applicable-config: gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, using zlib 1.2.0.3 or older"	39	CVE_STATUS[CVE-2025-0725] = "not-applicable-config: gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, using zlib 1.2.0.3 or older"
40	CVE_STATUS[CVE-2025-5025] = "${@bb.utils.contains('PACKAGECONFIG', 'openssl', 'not-applicable-config: build with openssl','unpatched',d)}"	40	CVE_STATUS[CVE-2025-5025] = "${@bb.utils.contains('PACKAGECONFIG', 'openssl', 'not-applicable-config: applicable only with wolfssl','unpatched',d)}"
41		41
42		42
43	inherit autotools pkgconfig binconfig multilib_header ptest	43	inherit autotools pkgconfig binconfig multilib_header ptest