diff options
| author | Peter Marko <peter.marko@siemens.com> | 2025-10-07 23:02:13 +0200 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2025-10-13 12:42:58 -0700 |
| commit | 8a80300d0f66a0c4062eafd8256d74cf4ecb5798 (patch) | |
| tree | f940b6e984c01b5c9cdfa4ee6e78c9c9a74cbddf | |
| parent | bb7e27a5db19937608fc9873106fea14cf40f423 (diff) | |
| download | poky-8a80300d0f66a0c4062eafd8256d74cf4ecb5798.tar.gz | |
gstreamer1.0: ignore CVE-2025-2759
Copy statement from [1] that it is problem of installers (non-Linux).
Also [2] linked in NVD says "Fixed in 1.25.1 Gstreamer Installer".
Since Yocto builds from sources into our own packages, ignore it.
[1] https://security-tracker.debian.org/tracker/CVE-2025-2759
[2] https://www.zerodayinitiative.com/advisories/ZDI-25-268/
(From OE-Core rev: 99ee1df6bde2ffd4fa2ddea44c0a9b94d9d77bae)
(From OE-Core rev: 7937625a30f6046ba483a000497b15169659f5eb)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-multimedia/gstreamer/gstreamer1.0_1.22.12.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.22.12.bb b/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.22.12.bb index cfc66745e3..5b0ba37977 100644 --- a/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.22.12.bb +++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.22.12.bb | |||
| @@ -96,4 +96,6 @@ CVE_STATUS_PLUGINS_GOOD = " \ | |||
| 96 | " | 96 | " |
| 97 | CVE_STATUS_PLUGINS_GOOD[status] = "cpe-incorrect: this is patched in gstreamer1.0-plugins-good" | 97 | CVE_STATUS_PLUGINS_GOOD[status] = "cpe-incorrect: this is patched in gstreamer1.0-plugins-good" |
| 98 | 98 | ||
| 99 | CVE_STATUS[CVE-2025-2759] = "not-applicable-platform: affects installation packages for non Linux OSes" | ||
| 100 | |||
| 99 | PTEST_BUILD_HOST_FILES = "" | 101 | PTEST_BUILD_HOST_FILES = "" |