diff options
| author | Peter Marko <peter.marko@siemens.com> | 2026-02-22 22:28:07 +0100 |
|---|---|---|
| committer | Paul Barker <paul@pbarker.dev> | 2026-02-27 15:54:03 +0000 |
| commit | 822c6db93eb51c58c9682975c0d2861c8e42e296 (patch) | |
| tree | 067171f631d76ee670acdb977e8f66fe901fa8bf /meta/recipes-graphics | |
| parent | b5f43fb19e59d7bdebffecb1c951a2d2cb8a952d (diff) | |
| download | poky-822c6db93eb51c58c9682975c0d2861c8e42e296.tar.gz | |
harfbuzz: ignore CVE-2026-22693
Patch [1] linked in NVD report fixes issue in cache code introduced only
in v6.0.0 (as can be seen in tags containind that commit).
[1] https://github.com/harfbuzz/harfbuzz/commit/1265ff8d990284f04d8768f35b0e20ae5f60daae
[2] https://github.com/harfbuzz/harfbuzz/commit/7a004a7ac27da776b623c0892ebced3d12213c39
(From OE-Core rev: 1d7c87fa2e499927cb6a26e4b2ad99e6127b6e33)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
Diffstat (limited to 'meta/recipes-graphics')
| -rw-r--r-- | meta/recipes-graphics/harfbuzz/harfbuzz_4.0.1.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-graphics/harfbuzz/harfbuzz_4.0.1.bb b/meta/recipes-graphics/harfbuzz/harfbuzz_4.0.1.bb index f7dc61ebd5..f4e9079922 100644 --- a/meta/recipes-graphics/harfbuzz/harfbuzz_4.0.1.bb +++ b/meta/recipes-graphics/harfbuzz/harfbuzz_4.0.1.bb | |||
| @@ -50,3 +50,6 @@ FILES:${PN}-icu-dev = "${libdir}/libharfbuzz-icu.la \ | |||
| 50 | FILES:${PN}-subset = "${libdir}/libharfbuzz-subset.so.*" | 50 | FILES:${PN}-subset = "${libdir}/libharfbuzz-subset.so.*" |
| 51 | 51 | ||
| 52 | BBCLASSEXTEND = "native nativesdk" | 52 | BBCLASSEXTEND = "native nativesdk" |
| 53 | |||
| 54 | # fixed-version: vulnerability was introduced in v6.0.0 | ||
| 55 | CVE_CHECK_IGNORE += "CVE-2026-22693" | ||