curl: ignore CVE-2025-0725 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Yogita Urade <yogita.urade@windriver.com>	2025-04-02 08:20:01 +0000
committer	Steve Sakoman <steve@sakoman.com>	2025-04-11 08:36:02 -0700
commit	b5b884bc1aedd778fd152f077b3f229089f8760e (patch)
tree	ceaa6b38c068e6867e087cadd1e413b4ba98b27a /scripts/lib/scriptpath.py
parent	d70d287a77d5026b698ac237ab865b2dafd36bb8 (diff)
download	poky-b5b884bc1aedd778fd152f077b3f229089f8760e.tar.gz

curl: ignore CVE-2025-0725

CVE-2025-0725 can only trigger for curl when using a runtime zlib version 1.2.0.3 or older and kirkstone supports zlib 1.2.11 version, hence ignore cve for kirkstone. Reference: https://curl.se/docs/CVE-2025-0725.html https://git.openembedded.org/openembedded-core/commit/?h=scarthgap&id=8c3b4a604b40260e7ca9575715dd8017e17d35c0 (From OE-Core rev: 9077246122b1284e8b6430384cccaf6f0b6c80c3) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/scriptpath.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: