diff options
| author | Ross Burton <ross.burton@arm.com> | 2024-05-13 15:21:30 +0000 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2024-07-17 05:36:13 -0700 |
| commit | 3c430b70b7541a3202d6f565cbfa8a5fa1c23e04 (patch) | |
| tree | 7cf41dd6bfa2df5d0038c847ae11e7349d9be7b2 | |
| parent | a725df1839a23b11ae1bace531d242bfc1ab98e0 (diff) | |
| download | poky-3c430b70b7541a3202d6f565cbfa8a5fa1c23e04.tar.gz | |
cpio: mark CVE-2023-7216 as disputed
Upstream consider the behaviour described in this CVE as intentional,
and provide an option to stop it.
(From OE-Core rev: 0f2cd2bbaddba3b8c80d71db274bbcd941d0e60e)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6c99147037ba8ca424ee42520183bd2bd55c7056)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-extended/cpio/cpio_2.15.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-extended/cpio/cpio_2.15.bb b/meta/recipes-extended/cpio/cpio_2.15.bb index 52070f59a2..95f82cdf3a 100644 --- a/meta/recipes-extended/cpio/cpio_2.15.bb +++ b/meta/recipes-extended/cpio/cpio_2.15.bb | |||
| @@ -16,6 +16,7 @@ SRC_URI[sha256sum] = "efa50ef983137eefc0a02fdb51509d624b5e3295c980aa127ceee41834 | |||
| 16 | inherit autotools gettext texinfo ptest | 16 | inherit autotools gettext texinfo ptest |
| 17 | 17 | ||
| 18 | CVE_STATUS[CVE-2010-4226] = "not-applicable-platform: Issue applies to use of cpio in SUSE/OBS" | 18 | CVE_STATUS[CVE-2010-4226] = "not-applicable-platform: Issue applies to use of cpio in SUSE/OBS" |
| 19 | CVE_STATUS[CVE-2023-7216] = "disputed: intended behaviour, see https://lists.gnu.org/archive/html/bug-cpio/2024-03/msg00000.html" | ||
| 19 | 20 | ||
| 20 | EXTRA_OECONF += "DEFAULT_RMT_DIR=${sbindir}" | 21 | EXTRA_OECONF += "DEFAULT_RMT_DIR=${sbindir}" |
| 21 | 22 | ||