diff options
| author | Peter Marko <peter.marko@siemens.com> | 2024-12-01 19:53:34 +0100 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2024-12-09 07:54:03 -0800 |
| commit | 4df7e37fcae6843600d54d92d38919f6d86952f6 (patch) | |
| tree | 2228b339de9eab2e667a82a2d09f20124c01b1bd | |
| parent | da9b588be42ff7e00eda89d228ee1aa4125590ab (diff) | |
| download | poky-4df7e37fcae6843600d54d92d38919f6d86952f6.tar.gz | |
gnupg: ignore CVE-2022-3515
This is vulnerability of libksba and we use fixed libksba version
(currently 1.6.4).
(From OE-Core rev: 12007a6d19db220e6540948de9818332192ecde1)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-support/gnupg/gnupg_2.3.7.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-support/gnupg/gnupg_2.3.7.bb b/meta/recipes-support/gnupg/gnupg_2.3.7.bb index 7a29a5659a..7075a61898 100644 --- a/meta/recipes-support/gnupg/gnupg_2.3.7.bb +++ b/meta/recipes-support/gnupg/gnupg_2.3.7.bb | |||
| @@ -87,3 +87,5 @@ lcl_maybe_fortify:mipsarch = "" | |||
| 87 | 87 | ||
| 88 | # upstream-wontfix: Upstream doesn't seem to be keen on merging the proposed commit - https://dev.gnupg.org/T5993 | 88 | # upstream-wontfix: Upstream doesn't seem to be keen on merging the proposed commit - https://dev.gnupg.org/T5993 |
| 89 | CVE_CHECK_IGNORE += "CVE-2022-3219" | 89 | CVE_CHECK_IGNORE += "CVE-2022-3219" |
| 90 | # cpe-incorrect: this is vulnerability of libksba and we use fixed libksba version | ||
| 91 | CVE_CHECK_IGNORE += "CVE-2022-3515" | ||