diff options
| author | Peter Marko <peter.marko@siemens.com> | 2024-08-07 23:54:41 +0200 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2024-08-28 06:49:22 -0700 |
| commit | 0d356a401d2e9aac2403825db31b99213fa71199 (patch) | |
| tree | 2a5e30aaed184d7c60b078dcf4a3526d7ac90b90 | |
| parent | 48ef389f9151f3e8766cd2b56b245b19ded997f6 (diff) | |
| download | poky-0d356a401d2e9aac2403825db31b99213fa71199.tar.gz | |
libyaml: ignore CVE-2024-35326
This is the same problem as already ignored CVE-2024-35328.
See laso this comment in addition:
https://github.com/yaml/libyaml/issues/298#issuecomment-2167684233
(From OE-Core rev: 18e011245dd978985eecc368c503822f61d52f21)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-support/libyaml/libyaml_0.2.5.bb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/meta/recipes-support/libyaml/libyaml_0.2.5.bb b/meta/recipes-support/libyaml/libyaml_0.2.5.bb index f7c29e7e0f..e30dc5a43f 100644 --- a/meta/recipes-support/libyaml/libyaml_0.2.5.bb +++ b/meta/recipes-support/libyaml/libyaml_0.2.5.bb | |||
| @@ -19,6 +19,6 @@ DISABLE_STATIC:class-nativesdk = "" | |||
| 19 | DISABLE_STATIC:class-native = "" | 19 | DISABLE_STATIC:class-native = "" |
| 20 | 20 | ||
| 21 | # upstream-wontfix: Upstream thinks there is no working code that is exploitable - https://github.com/yaml/libyaml/issues/302 | 21 | # upstream-wontfix: Upstream thinks there is no working code that is exploitable - https://github.com/yaml/libyaml/issues/302 |
| 22 | CVE_CHECK_IGNORE += "CVE-2024-35328" | 22 | CVE_CHECK_IGNORE += "CVE-2024-35326 CVE-2024-35328" |
| 23 | 23 | ||
| 24 | BBCLASSEXTEND = "native nativesdk" | 24 | BBCLASSEXTEND = "native nativesdk" |