libxml2: mark CVE-2025-6170 as fixed

As shown in [1] when expanding tags including it. NVD tracks this CVE as version-less. [1] https://gitlab.gnome.org/GNOME/libxml2/-/commit/c340e419505cf4bf1d9ed7019a87cc00ec200434 (From OE-Core rev: d8a9c190811ad9658a74502a371c110f4d24d68f) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Peter Marko <peter.marko@siemens.com> 2025-08-23 22:47:07 +0200
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2025-08-25 17:47:21 +0100
commit: e29b37130f0756e85708f4b91dc1b4a73954679c (patch)
tree: 43e26e1bdefc076578db7df685488c47ba087896
parent: 66e1a790639982ca1c19259f72981652bf6fcbfc (diff)
download: poky-e29b37130f0756e85708f4b91dc1b4a73954679c.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-core/libxml/libxml2_2.14.5.bb b/meta/recipes-core/libxml/libxml2_2.14.5.bb
index f60a46e187..0b5edcd7a3 100644
--- a/meta/recipes-core/libxml/libxml2_2.14.5.bb
+++ b/meta/recipes-core/libxml/libxml2_2.14.5.bb
@@ -27,6 +27,8 @@ SRC_URI[testtar.sha256sum] = "c6b2d42ee50b8b236e711a97d68e6c4b5c8d83e69a2be47223
 # Disputed as a security issue, but fixed in d39f780
 CVE_STATUS[CVE-2023-45322] = "disputed: issue requires memory allocation to fail"
+CVE_STATUS[CVE-2025-6170] = "fixed-version: fixed in version 2.14.5"
 BINCONFIG = "${bindir}/xml2-config"
 PACKAGECONFIG ??= "python"
author	Peter Marko <peter.marko@siemens.com>	2025-08-23 22:47:07 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2025-08-25 17:47:21 +0100
commit	e29b37130f0756e85708f4b91dc1b4a73954679c (patch)
tree	43e26e1bdefc076578db7df685488c47ba087896
parent	66e1a790639982ca1c19259f72981652bf6fcbfc (diff)
download	poky-e29b37130f0756e85708f4b91dc1b4a73954679c.tar.gz

diff --git a/meta/recipes-core/libxml/libxml2_2.14.5.bb b/meta/recipes-core/libxml/libxml2_2.14.5.bb index f60a46e187..0b5edcd7a3 100644 --- a/meta/recipes-core/libxml/libxml2_2.14.5.bb +++ b/meta/recipes-core/libxml/libxml2_2.14.5.bb
@@ -27,6 +27,8 @@ SRC_URI[testtar.sha256sum] = "c6b2d42ee50b8b236e711a97d68e6c4b5c8d83e69a2be47223
27	# Disputed as a security issue, but fixed in d39f780	27	# Disputed as a security issue, but fixed in d39f780
28	CVE_STATUS[CVE-2023-45322] = "disputed: issue requires memory allocation to fail"	28	CVE_STATUS[CVE-2023-45322] = "disputed: issue requires memory allocation to fail"
29		29
		30	CVE_STATUS[CVE-2025-6170] = "fixed-version: fixed in version 2.14.5"
		31
30	BINCONFIG = "${bindir}/xml2-config"	32	BINCONFIG = "${bindir}/xml2-config"
31		33
32	PACKAGECONFIG ??= "python"	34	PACKAGECONFIG ??= "python"