diff options
| author | Khem Raj <raj.khem@gmail.com> | 2024-07-28 07:49:05 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2024-07-30 12:32:53 +0100 |
| commit | 56b6b35626a96d6e5f853975bbe17c3d0294b825 (patch) | |
| tree | 227d2abe48cae2745990bc2b6581ee9338744591 | |
| parent | 7d9717a2154278f5767899a5589ddcafd88c4452 (diff) | |
| download | poky-56b6b35626a96d6e5f853975bbe17c3d0294b825.tar.gz | |
libyaml: Update status of CVE-2024-35328
This is open yet but seems to be disputed
(From OE-Core rev: 4cba8ad405b1728afda3873f99ac88711ab85644)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
| -rw-r--r-- | meta/recipes-support/libyaml/libyaml_0.2.5.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-support/libyaml/libyaml_0.2.5.bb b/meta/recipes-support/libyaml/libyaml_0.2.5.bb index 4cb5717ece..2d6f27af1f 100644 --- a/meta/recipes-support/libyaml/libyaml_0.2.5.bb +++ b/meta/recipes-support/libyaml/libyaml_0.2.5.bb | |||
| @@ -18,4 +18,6 @@ inherit autotools | |||
| 18 | DISABLE_STATIC:class-nativesdk = "" | 18 | DISABLE_STATIC:class-nativesdk = "" |
| 19 | DISABLE_STATIC:class-native = "" | 19 | DISABLE_STATIC:class-native = "" |
| 20 | 20 | ||
| 21 | CVE_STATUS[CVE-2024-35328] = "disputed: Upstream thinks there is no working code that is exploitable - https://github.com/yaml/libyaml/issues/302" | ||
| 22 | |||
| 21 | BBCLASSEXTEND = "native nativesdk" | 23 | BBCLASSEXTEND = "native nativesdk" |