summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAdrian Bunk <bunk@stusta.de>2020-01-17 16:58:18 (GMT)
committerRichard Purdie <richard.purdie@linuxfoundation.org>2020-01-28 11:15:02 (GMT)
commit7a8ac5c1c95a77d8e7177c5ca52e4635d374e160 (patch)
tree6d30d98b2a72d1d53f8507423fb8fa69a8c7ad26
parentcd1d971e25cf882054396ea558b1faa6a8a00c02 (diff)
downloadpoky-7a8ac5c1c95a77d8e7177c5ca52e4635d374e160.tar.gz
openssl: Whitelist CVE-2019-0190
This is only a problem with older Apache versions. (From OE-Core rev: 8e76d2508da411a1a67f3226465c83fec85dfe97) Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r--meta/recipes-connectivity/openssl/openssl_1.1.1d.bb4
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb b/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb
index 0e65f33..af2217b 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb
@@ -205,3 +205,7 @@ RCONFLICTS_openssl-conf = "openssl10-conf"
205BBCLASSEXTEND = "native nativesdk" 205BBCLASSEXTEND = "native nativesdk"
206 206
207CVE_PRODUCT = "openssl:openssl" 207CVE_PRODUCT = "openssl:openssl"
208
209# Only affects OpenSSL >= 1.1.1 in combination with Apache < 2.4.37
210# Apache in meta-webserver is already recent enough
211CVE_CHECK_WHITELIST += "CVE-2019-0190"